My Wordpress Blog Got Hacked

By Vijay on November 14th, 2008

Hi, I was looking at Google webmaster analysis that is when I saw that my blog has been hacked, I am not sure how that happened, so we will narrow it down with the process of elimination.

What kind of hack: Well in the google webmaster reports it said Unreachable URL’s so I looked further and this is what I found.

In the plugins folder there is a subfolder _images and this one has a bunch of external links going to some porn sites. Here is the path /wp-contents/plugins/_images/

1. Did somebody uploaded this using my ftp credentials, not sure I am the only one who maintains the blog.
2. Could it be the work of some rouge plugin, I am only using the Industry specific widly used and tested and recommended ones.
3.Some how the server got hacked: possible

As of till now I am not sure of the source of the hack, I am currently more concerned about getting rid of those spammy links.
So this is what I am going to do
Step 1: Delete the _images folder under the plugins directory
Step 2: Change the ftp credentials
Step 3: Change the wp credentials
Step 4: Call the hosting provider (this is to be the first…)

I vaguely remember reading about similar kind of hack on some other blog and the dude did some kind of top level investigation and was able to resolve the issue.
I will greatly appreciate if you could help me in resolving this issue via comments or contact form or point me in the right direction.

Till then stay safe and check your blogs regularly for security breaches

Website Magazine

Categories: Communication
Tags: , , , , ,

About the Author

Vijay

Leave a Reply

You can use these XHTML tags: <a href="" title=""> <abbr title=""> <acronym title=""> <blockquote cite=""> <code> <em> <strong>

« »