Wordpress stealth hack - GoFuckYourself.com

Brujah · 05-10-2010, 12:54 AM

Wordpress sites are being hacked by the hundreds, and you may not even realize that yours is too if you host on any number of shared servers (Network Solutions, Dreamhost, GoDaddy, etc...).

http://www.wpsecuritylock.com/breaki...-on-dreamhost/

halfpint · 05-10-2010, 01:15 AM

Thanks man bump for more awareness

SGS · 05-10-2010, 01:36 AM

Wordpress = fucking nightmare.

CunningStunt · 05-10-2010, 01:42 AM

Where there's a will, there's a way.

Any mass software solution is going to be hit sooner or later. Stinks, but it's inevitable.

Thanks Brujah. Now I remember why I let a 100 domain experiment die on its ass.

fris · 05-10-2010, 04:32 AM

thats what you get for hosting on a shitty web host, serves them right

seeandsee · 05-10-2010, 04:58 AM

Quote:

Originally Posted by Brujah

Wordpress sites are being hacked by the hundreds, and you may not even realize that yours is too if you host on any number of shared servers (Network Solutions, Dreamhost, GoDaddy, etc...).

http://www.wpsecuritylock.com/breaki...-on-dreamhost/

thanks for notice

LoveSandra · 05-10-2010, 05:09 AM

Quote:

Originally Posted by SGS

Wordpress = fucking nightmare.

sometimes , yes

CPimp · 05-10-2010, 06:37 AM

That friggin sucks.

MrBottomTooth · 05-10-2010, 06:41 AM

This seems like a hosting issue, not wordpress.

Any php site on these affected shared hosts are vulnerable. There are people with phpld, joomla sites, even custom php sites that are getting hit. Only thing they have in common is that they used one of the above-mentioned shared hosts.

bloggerz · 05-10-2010, 06:41 AM

its only on shared hosting? so blogs on dedicated servers aren't being affected?

MrBottomTooth · 05-10-2010, 06:50 AM

Quote:

Originally Posted by bloggerz

its only on shared hosting? so blogs on dedicated servers aren't being affected?

Yes, that's what I have read, only certain shared hosts are being hit right now.

V_RocKs · 05-10-2010, 08:12 AM

Wonder if it is the same shitheads that did the big attack last time.

ottopottomouse · 05-10-2010, 10:47 AM

Thanks for that. Can't find any with a problem

Why · 05-10-2010, 10:56 AM

has anyone found one of these websites or is it just dreamhost bashing?

considering the source is a person who makes money selling WordPress security software and knowledge

MrBottomTooth · 05-10-2010, 11:54 AM

Quote:

Originally Posted by Why

has anyone found one of these websites or is it just dreamhost bashing?

considering the source is a person who makes money selling WordPress security software and knowledge

Dreamhost, network solutions, godaddy are all being hit, all kinds of php sites. Not exclusive to wordpress at all.

TheDA · 05-10-2010, 11:58 AM

Quote:

Originally Posted by Why

has anyone found one of these websites or is it just dreamhost bashing?

considering the source is a person who makes money selling WordPress security software and knowledge

I wondered the same to be honest. I haven't seen a site listed that's been hit yet.

TheDA · 05-10-2010, 11:59 AM

Quote:

Originally Posted by MrBottomTooth

Dreamhost, network solutions, godaddy are all being hit, all kinds of php sites. Not exclusive to wordpress at all.

Do you know of any that have been hit by any chance?

Brujah · 05-10-2010, 12:31 PM

On wordpress.org forums there's a list of people who claim their sites were hacked.
http://wordpress.org/support/topic/396524?replies=1

Add BlueHost to the list of shared hosts. Also, this doesn't seem to be exclusive to wordpress, but sometimes other .php files on the servers.

Dirty Lord · 05-10-2010, 12:38 PM

Quote:

Originally Posted by SGS

Wordpress = fucking nightmare.

dont say that

icymelon · 05-10-2010, 12:41 PM

cant you set wordpress to only let your ip login?

harvey · 05-10-2010, 12:48 PM

the attacks are on Apache, not WordPress, that's why it only works on shared hosting. They attacked WP, ZenCart, Drupal and almost any PHP file at sight. Thing is WP has millions of users, hence you'll see "WP is under attack". Or do you expect to see "some custom php script is under attack"? geez, some people

Quite curiously, you'll rarely see "some idiots at shared hosting have no clue about what they're doing", and in 99% of cases that is the issue.

harvey · 05-10-2010, 12:50 PM

Quote:

Originally Posted by icymelon

cant you set wordpress to only let your ip login?

yes you can with some easy custom mod. However, the attacks were from inside the server, so how do you stop that? Last time, when the NetSol fiasco shown up (1 month ago or so) it was proven they had a rogue admin that changed permissions to allow access to account. Same with GoDaddy hosting. How do you plan to stop that?

Davy · 05-10-2010, 01:18 PM

I have no problems with my php sites on Dreamhost.

Argos88 · 05-10-2010, 02:57 PM

This is a sever config problem.. NOT Wordpress....

TheDA · 05-10-2010, 03:14 PM

I checked all my WP stuff on shared earlier and it was OK!

05-10-2010, 12:54 AM	#1
Brujah Beer Money Baron Industry Role: Join Date: Jan 2001 Location: brujah / gmail Posts: 22,157	Wordpress stealth hack Wordpress sites are being hacked by the hundreds, and you may not even realize that yours is too if you host on any number of shared servers (Network Solutions, Dreamhost, GoDaddy, etc...). http://www.wpsecuritylock.com/breaki...-on-dreamhost/ __________________ Free Premium Domain Lists and Tools at Clickmojo.com For Sale: Obscenity.com

05-10-2010, 01:15 AM	#2
halfpint GFY's Halfpint Industry Role: Join Date: Jun 2007 Location: UK Posts: 15,223	Thanks man bump for more awareness __________________ Get FREE website listings on Cryptocoinshops.net

05-10-2010, 01:36 AM	#3
SGS Confirmed User Industry Role: Join Date: Dec 2002 Location: Mallorca - Nottingham Posts: 5,176	Wordpress = fucking nightmare. __________________ See sig...

05-10-2010, 04:32 AM	#5
fris Too lazy to set a custom title Industry Role: Join Date: Aug 2002 Posts: 55,372	thats what you get for hosting on a shitty web host, serves them right __________________ Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence. WP Stuff

05-10-2010, 06:37 AM	#8
CPimp Confirmed User Industry Role: Join Date: Aug 2009 Posts: 2,346	That friggin sucks. __________________ three 997 three 55 three 1 ← That's my ICQ. Contact me there. Thanks.

05-10-2010, 01:42 AM	#4
CunningStunt Confirmed User Industry Role: Join Date: Aug 2006 Posts: 5,594	Where there's a will, there's a way. Any mass software solution is going to be hit sooner or later. Stinks, but it's inevitable. Thanks Brujah. Now I remember why I let a 100 domain experiment die on its ass.

05-10-2010, 06:41 AM	#9
MrBottomTooth Confirmed User Join Date: Sep 2009 Posts: 5,795	This seems like a hosting issue, not wordpress. Any php site on these affected shared hosts are vulnerable. There are people with phpld, joomla sites, even custom php sites that are getting hit. Only thing they have in common is that they used one of the above-mentioned shared hosts.

05-10-2010, 06:41 AM	#10
bloggerz Too lazy to set a custom title Industry Role: Join Date: Dec 2006 Posts: 16,256	its only on shared hosting? so blogs on dedicated servers aren't being affected? __________________ I SELL ADULT BACKLINKS! Email: eroticweb>gmail SKYPE: gfybloggerz $$$$$ MAKE HUGE MONEY IN CAMS - CLICK HERE $$$$$

05-10-2010, 08:12 AM	#12
V_RocKs Damn Right I Kiss Ass! Industry Role: Join Date: Dec 2003 Location: Cowtown, USA Posts: 32,409	Wonder if it is the same shitheads that did the big attack last time.

05-10-2010, 10:47 AM	#13
ottopottomouse She is ugly, bad luck. Industry Role: Join Date: Jan 2010 Posts: 13,177	Thanks for that. Can't find any with a problem __________________ ↑ see post ↑ 13101

05-10-2010, 10:56 AM	#14
Why MFBA Industry Role: Join Date: Mar 2003 Location: PNW Posts: 7,230	has anyone found one of these websites or is it just dreamhost bashing? considering the source is a person who makes money selling WordPress security software and knowledge

05-10-2010, 12:31 PM	#18
Brujah Beer Money Baron Industry Role: Join Date: Jan 2001 Location: brujah / gmail Posts: 22,157	On wordpress.org forums there's a list of people who claim their sites were hacked. http://wordpress.org/support/topic/396524?replies=1 Add BlueHost to the list of shared hosts. Also, this doesn't seem to be exclusive to wordpress, but sometimes other .php files on the servers. __________________ Free Premium Domain Lists and Tools at Clickmojo.com For Sale: Obscenity.com

05-10-2010, 12:41 PM	#20
icymelon Confirmed User Industry Role: Join Date: Dec 2007 Location: Las Vegas Posts: 3,220	cant you set wordpress to only let your ip login? __________________ Network Of Adult Blogs With Hardlink Rentals Available

05-10-2010, 12:48 PM	#21
harvey Confirmed User Industry Role: Join Date: Jul 2001 Location: 127.0.0.1 Posts: 9,266	the attacks are on Apache, not WordPress, that's why it only works on shared hosting. They attacked WP, ZenCart, Drupal and almost any PHP file at sight. Thing is WP has millions of users, hence you'll see "WP is under attack". Or do you expect to see "some custom php script is under attack"? geez, some people Quite curiously, you'll rarely see "some idiots at shared hosting have no clue about what they're doing", and in 99% of cases that is the issue. __________________ This post is endorsed by CIA, KGB, MI6, the Mafia, Illuminati, Kim Jong Il, Worldwide Ninjas Association, Klingon Empire and lolcats. Don't mess around with it, just accept it and embrace the truth

05-10-2010, 01:18 PM	#23
Davy Confirmed User Industry Role: Join Date: Apr 2006 Location: Germany Posts: 4,323	I have no problems with my php sites on Dreamhost. __________________ --- ICQ 14-76-98 <-- I don't use this at all

05-10-2010, 02:57 PM	#24
Argos88 So Fucking Banned Industry Role: Join Date: Sep 2009 Posts: 1,732	This is a sever config problem.. NOT Wordpress....

05-10-2010, 03:14 PM	#25
TheDA Confirmed User Industry Role: Join Date: May 2006 Posts: 4,665	I checked all my WP stuff on shared earlier and it was OK!