Do Hackers have nothing better to Do? - GoFuckYourself.com

ohjulien · 06-30-2014, 11:55 PM

Just started a new site, and had some good advice about locking it down with more money
how crazy do you need to get with a wordpress site ???????

Cheers
oh

Seth Manson · 07-01-2014, 12:08 AM

Fuckers hacked my WP Super Cache plugin and injected an iframe that loads outside of the browser's viewable area, img src'd a shitload of websites and youtube videos, made the status bar go nuts, and blasted my speakers with like 30 videos loading all at the same time.

I removed all plugins, installed a new plugin to export my whole site as static html, and said goodbye to wordpress on 50 websites.

This is just since last night.

freecartoonporn · 07-01-2014, 01:54 AM

hey, it pays their bills so its their full time job .

if you cant keep it secure then dont use whatever majority public is using i.e. wp.
drop wp get ghost or something else.

druid66 · 07-01-2014, 02:33 AM

Quote:

Originally Posted by freecartoonporn

hey, it pays their bills so its their full time job .

if you cant keep it secure then dont use whatever majority public is using i.e. wp.
drop wp get ghost or something else.

ghost? some cms?

Klen · 07-01-2014, 02:40 AM

This is why i developed my own cms since wordpress is insecure as fuck.

lock · 07-01-2014, 03:03 AM

I installed wordpress this week on a number of sites this is my first week using it and fuck me got hacked in 1st week. I am thinking of only using the guts of it and manually link to what i import with it. http://www.trafficshopping.com

freecartoonporn · 07-01-2014, 03:32 AM

Quote:

Originally Posted by druid66

ghost? some cms?

https://ghost.org/download/

druid66 · 07-01-2014, 03:57 AM

Quote:

Originally Posted by freecartoonporn

https://ghost.org/download/

thank you. can you tell smth about it? why it's better than WP, cuz it's less popular and less hacked?

Klen · 07-01-2014, 04:08 AM

Quote:

Originally Posted by druid66

thank you. can you tell smth about it? why it's better than WP, cuz it's less popular and less hacked?

You could look here for alternatives as well: http://www.opensourcecms.com/scripts...category=Blogs .And when it comes to less hacked,dont remember hearing for any other script beside wordpress ever being hacked lol

armysmoke · 07-01-2014, 04:11 AM

I had all of my WP sites hacked a few months ago. Everything was updated, security, etc. My host was able to recreate all of my sites and put on WP Security which seemed to fix the hacking issue.

druid66 · 07-01-2014, 04:13 AM

thanks, i'm just reading about ghost now, gonna read about the others.

whats wonder me how to smoothly transfer over 300 posts into new platform

also if i would switch i would like to have fast cms, WP is slow sometimes.

druid66 · 07-01-2014, 04:43 AM

apparently it's doeable, found this one: http://www.ghostforbeginners.com/how...ress-to-ghost/

Klen · 07-01-2014, 05:07 AM

Quote:

Originally Posted by druid66

thanks, i'm just reading about ghost now, gonna read about the others.

whats wonder me how to smoothly transfer over 300 posts into new platform

also if i would switch i would like to have fast cms, WP is slow sometimes.

My own cms is fast as fuck.When it comes to others,you might target those scripts which are not using mysql database,as that is one of reason why it can be slow sometime.

blackmonsters · 07-01-2014, 05:27 AM

Is WP the problem or 3rd party plugins?

Captain Kawaii · 07-01-2014, 05:53 AM

People checking this thread may want to check this other thread as well.
Could be related as our site is a wp site.

https://gfy.com/showthread.php?t=1144348

Matt 26z · 07-01-2014, 10:20 AM

Quote:

Originally Posted by blackmonsters

Is WP the problem or 3rd party plugins?

I'm pretty sure a bare WP install is fairly secure. Though there are hundreds of blog platforms to choose from. The problem is this huge movement to make WP into a full scale CMS. It's like webmasters are afraid of hand coding and photoshop now. Everything has to be point and click. The hacking is the price paid for that.

iwantchixx · 07-01-2014, 10:53 AM

Quote:

Originally Posted by Seth Manson

Fuckers hacked my WP Super Cache plugin and injected an iframe that loads outside of the browser's viewable area, img src'd a shitload of websites and youtube videos, made the status bar go nuts, and blasted my speakers with like 30 videos loading all at the same time.

I removed all plugins, installed a new plugin to export my whole site as static html, and said goodbye to wordpress on 50 websites.

This is just since last night.

Wow, that is pretty intense. Luckily, we have fared well, though, Charles is very good at securing our shit.

but yeah, WP is quite vulnerable.

Things to note for other users worried about WP security:

1. Pay attention to what folder permissions are being given to certain plugins, if its too insecure, don't use them

2. Keep your plugins and themes UP TO DATE. Use child themes for any customizations so that when updates to themes happen, your site doesn't break.

3. Be weary of any custom Javascript or PHP you do, keep it tight and know what you are doing if it accesses any database(s)

4. Be weary of plugins and themes that are not part of the Wordpress codex (ie, avail right from WP's site). For plugins and themes that you obtain from outside sources, understand what they do, make sure you can trust the company providing them and don't EVER buy from a retailer that is just re-branding and selling the same plugins avail elsewhere.

5. If the source-code is protected, chances are good that the plugin phones-home. Avoid, unless you trust the source.

DerekMister33 · 07-02-2014, 09:33 PM

Really don't have anything better to do. I agree.

06-30-2014, 11:55 PM	#1
ohjulien Confirmed User Industry Role: Join Date: Jan 2012 Posts: 126	Do Hackers have nothing better to Do? Just started a new site, and had some good advice about locking it down with more money how crazy do you need to get with a wordpress site ??????? Cheers oh

07-01-2014, 01:54 AM	#3
freecartoonporn Confirmed User Industry Role: Join Date: Jan 2012 Location: NC Posts: 7,683	hey, it pays their bills so its their full time job . if you cant keep it secure then dont use whatever majority public is using i.e. wp. drop wp get ghost or something else. __________________ SSD Cloud Server, VPS Server, Simple Cloud Hosting \| DigitalOcean

07-01-2014, 03:03 AM	#6
lock Confirmed User Industry Role: Join Date: Jul 2003 Location: Australia Posts: 5,065	I installed wordpress this week on a number of sites this is my first week using it and fuck me got hacked in 1st week. I am thinking of only using the guts of it and manually link to what i import with it. http://www.trafficshopping.com __________________ Traffic.Tools - 40+ Free Tools Free.Marketing - 150+ Free Tools Submission.Tools - 20+ Free Tools

07-01-2014, 04:13 AM	#11
druid66 Confirmed User Join Date: Feb 2006 Posts: 994	thanks, i'm just reading about ghost now, gonna read about the others. whats wonder me how to smoothly transfer over 300 posts into new platform also if i would switch i would like to have fast cms, WP is slow sometimes. __________________ Pure Japan japanese babes blog Last edited by druid66; 07-01-2014 at 04:16 AM..

07-01-2014, 04:43 AM	#12
druid66 Confirmed User Join Date: Feb 2006 Posts: 994	apparently it's doeable, found this one: http://www.ghostforbeginners.com/how...ress-to-ghost/ __________________ Pure Japan japanese babes blog

07-01-2014, 12:08 AM	#2
Seth Manson Please dont fuck animals Industry Role: Join Date: Jul 2010 Location: Henderson, NV Posts: 3,988	Fuckers hacked my WP Super Cache plugin and injected an iframe that loads outside of the browser's viewable area, img src'd a shitload of websites and youtube videos, made the status bar go nuts, and blasted my speakers with like 30 videos loading all at the same time. I removed all plugins, installed a new plugin to export my whole site as static html, and said goodbye to wordpress on 50 websites. This is just since last night.

07-01-2014, 02:40 AM	#5
Klen Industry Role: Join Date: Aug 2006 Location: Little Vienna Posts: 32,235	This is why i developed my own cms since wordpress is insecure as fuck.

07-01-2014, 04:11 AM	#10
armysmoke Confirmed User Industry Role: Join Date: Oct 2013 Posts: 2,605	I had all of my WP sites hacked a few months ago. Everything was updated, security, etc. My host was able to recreate all of my sites and put on WP Security which seemed to fix the hacking issue.

07-01-2014, 05:27 AM	#14
blackmonsters Making PHP work Industry Role: Join Date: Nov 2002 Location: 🌎🌅🌈🌇 Posts: 20,227	Is WP the problem or 3rd party plugins? __________________ Make Money with Porn

07-01-2014, 05:53 AM	#15
Captain Kawaii So Fucking Banned Industry Role: Join Date: Oct 2007 Posts: 6,748	People checking this thread may want to check this other thread as well. Could be related as our site is a wp site. https://gfy.com/showthread.php?t=1144348

07-02-2014, 09:33 PM	#18
DerekMister33 Confirmed User Industry Role: Join Date: Jul 2014 Posts: 204	Really don't have anything better to do. I agree.