Comments on: Expunging the wordpress.net.in spam injection hijack

By: Error on Page Message Wordpress - Website Babble Webmaster Forums

Error on Page Message Wordpress - Website Babble Webmaster Forums — Wed, 01 Jul 2009 12:59:29 +0000

[...] Spam Injection: ‘Goro’ hacked my blog[/url] Expunging the wordpress.net.in spam injection hijack The Aftermath of a Wordpress Spam Injection (and a Tool to Prevent it) Wordpress exploit: we been [...]

By: Mike Gifford

Mike Gifford — Tue, 21 Apr 2009 18:20:57 +0000

Thanks, I was wondering what to grep for, and found this quickly using:
$ grep -ir ‘http://wordpress.net.in/license.txt’ *

By: security monitoring

security monitoring — Mon, 15 Dec 2008 02:10:49 +0000

I’ve find some useful information on how to clean that mess. They were caused by a spam injection hijack. Great article.

By: Pinnacle Security

Pinnacle Security — Wed, 19 Nov 2008 21:23:27 +0000

I’ve seen this before,and im lucky to get rid of it.Is there a way to terminate this?

By: gordon

gordon — Tue, 21 Oct 2008 16:39:57 +0000

WordPress is very good and many of the problems aren’t with WordPress itself, but rather with components it uses.

By: Aaron

Aaron — Tue, 21 Oct 2008 07:02:35 +0000

Wordpress is great, and I realize no software is perfect, but come on, this hijacking is getting out of control. Can’t somebody get in there in fix it?

By: gordon

gordon — Sun, 07 Sep 2008 22:23:59 +0000

Ugh… that’s not good. Did you happen to change your theme recently? I’ve been wondering if poorly-written or maliciously-written themes are one way this sort of thing happens.

By: Uptowngal

Uptowngal — Sun, 07 Sep 2008 15:28:56 +0000

It’s freaking bad lucky but my blog got hacked AGAIN even after I upgraded to Wordpress 2.6! Tried to harden my blog by adding in the “Secret Key” as suggested by WP… hope it works. Not sure what else I can do ‘cos I’m quite lousy at WP stuff.

By: Forex Converter

Forex Converter — Fri, 18 Jul 2008 12:43:05 +0000

Isn’t there a plugin to fix all these hacking attempts? Someone tried to hack my blogs too

By: Dan

Dan — Wed, 25 Jun 2008 09:31:24 +0000

My blog was dropped by Google because of this attack. After cleaning up and fixing as you all did above I still found that the hacker had injected spam links into my blog database.

I just wrote a ‘fix’ in PHP that everyone can use to clean all of the spam links out of their database. This fix is tested and worked in my case. Feedback is welcomed!

You can get the fix here -

http://hygen.net/blog/?p=195

~ Dan