| How Do I Know If My Wordpress Has Already Been Attacked? |
| Written by Administrator |
| Sunday, 10 January 2010 00:00 |
|
There are two clues that your WordPress site has been attacked. There are strange additions to the pretty permalinks, such as The second clue is that a “back door” was created by a “hidden” Administrator. Check your site users for “Administrator (2)” or a name you do not recognize. You will probably be unable to access that account, but Journey Etc. has a possible solution. WordPress.com blogs are not impacted as they are up-to-date. Only versions prior to WordPress 2.8.4 are impacted. To Prevent Your WordPress Blog from AttackTo prevent this form of attack, update your WordPress site IMMEDIATELY to the latest version. Change ALL passwords to a strong password immediately, including WordPress blog access for all users, database, FTP, control panels, everything. See the articles below for more helpful information on how to harden and protect your WordPress blog. If Your WordPress Blog Has Been AttackedIf your site has already been attacked, it appears that the hack attacks the database, going deep. You can find help in the WordPress Codex article on how to deal with a hacked WordPress site. We’re looking for specific solutions, but the easiest appears to be to export all your content with the built-in XML WordPress export (pre 2.1 versions, try the WordPress-to-WordPress Import WordPress Plugin) and literally remove your WordPress installation totally (save images and general files). DO NOT EXPORT YOUR DATABASE! Install the latest version of WordPress and add the “clean” backup of your WordPress Theme, then import the XML export. The export will contain your posts, Pages, and comments, and hopefully no other hacked code. “How To Completely Clean Your Hacked WordPress Installation” by Smackdown is a good article on how to reinstall WordPress after being hacked, but take care to keep your export limited to the post content and comments (and Pages), not the entire database as the hack goes into the database. How to Respond to a WordPress AttackWordPress has been requesting users update as soon as an update is released for several years. They also now have a excellent team to track down this issue and quickly protect WordPress with any necessary updates. Please blog and Twitter about the attacks. It’s important that we spread the information throughout the WordPress Community as fast as possible, encouraging everyone to update WordPress. Take care not to promote rumors, just the facts, until we know more. If you have pertinent information that will help the WordPress team track down and stop this attack, please report it to This e-mail address is being protected from spambots. You need JavaScript enabled to view it . Check the WordPress Support Forums for more information and support. Also check for news and announcements on security issues and updates on the WordPress Development Blog and in your WordPress blog Dashboard Panel. Please, keep your WordPress site constantly updated. You are now informed of updates directly through the Administration Panels. Act upon it. Here are some other articles and information that may prove useful.
Comments (0) |
| Related Post |
|---|
|
| Powered By relatedArticle |
