Apr - 25th
New WordPress Backdoor Style Discovered – Hackers Think They Are Sneaky
Posted at 3:39 pm | Filed Under coding, hacking, nerdiness, tutorial, Wordpress
I was cleaning a client’s site today that had been hacked, when I discovered a new backdoor implementation that I had never seen before. This one is a perfect example of why automated scans are often not sufficient when cleaning up a hacked WordPress installation. You can see the full file here: 99bde887d.php. The file [...]
Apr - 10th
Warning: WordPress.org Does Not Tell You If You Download An Infected Plugin From Them
Posted at 8:00 am | Filed Under blogthropology, coding, lackofmeds, Wordpress
Have you ever logged in to your WordPress dashboard, noticed that there were some updates pending, but simply couldn’t be bothered pushing the button to run them? Sure you have. Who hasn’t? A good majority of my work comes from dehacking websites that have been compromised, and even I slack on that from time to [...]
Nov - 14th
Hosting with HostPapa or Netregistry and Hacked? Switch Hosts Now. (hacked by hacker)
Posted at 7:21 pm | Filed Under blogthropology, customer service, lackofmeds, Wordpress
It looks like another pair of hosts have joined GoDaddy in the “Not our fault” game when their servers get breached. Yesterday I had a few people contact me whose sites had been hacked, all with the identical symptoms: the only thing showing on their sites are the words hacked by hacker in plain text, [...]
Feb - 21st
Email To The FSF About WordPress’s GPL License Violations
Posted at 3:29 pm | Filed Under blogthropology, lackofmeds, web design, Wordpress
So, after it became obvious that the WordPress developers responding to having the GPL violations pointed out to them were unwilling to admit that they needed to abide to the license, I decided that it was best to email the FSF themselves and ask about the violation issues. The email I sent is below: Be [...]
Feb - 18th
As It Turns Out, WordPress Itself Is Not 100% GPL Compliant After All (And They Violate The MIT License As Well)
Posted at 9:52 am | Filed Under blogthropology, coding, lackofmeds, Wordpress
Yesterday I stumbled upon a rather interesting tidbit of information. I opened Twitter in the middle of a conversation between between Chip Bennett and Ben Cook, and I saw this tweet: Curiosity piqued, I dug back through the tweets until I found a link to the thread Ben was referring to. It turns [...]
Nov - 10th
Hacked on GoDaddy? I’ll Migrate You To Hostgator For Free
Posted at 12:07 pm | Filed Under blogthropology, coding, customer service, Wordpress
Yet again, I am seeing a rising number of sites that are reporting getting hacked at GoDaddy. It is also no surprise to me that people are getting limited responses from them when they try and find out what is going on. The GoDaddy blog mentions nothing recently aside from when they were hacked 2 [...]
Jun - 14th
Rackspace Hacked Clients, Check Your Databases: WordPress “wp_optimize” Backdoor In wp_options Table
Posted at 8:16 pm | Filed Under blogthropology, coding, how-to, nerdiness, Wordpress
Just finished cleaning up a hacked client whose website is hosted on Rackspace Cloud hosting. It is the second one within the past few weeks, although the first one was actually hosting on Laughing Squid, which happens to use Rackspace Cloud. I had discovered that there were a large number of people all on the [...]
Jun - 1st
WordPress Hacking, Matt Mullenweg, And Some Screwed Up Priorities
Posted at 7:45 am | Filed Under bad research, blogthropology, lackofmeds, priorities, scams, Wordpress, WTF
I clean WordPress installations for people who have been hacked. I can help fix non-Wordpress sites as well, but since often times the way people find me is through the guide I wrote on how to fix WordPress after you’ve been hacked it turns out that’s what they need me to do for them a [...]
May - 14th
GoDaddy’s Suggestion For The Cause Of Their Hacks And Their Community Blog – Can You Smell The Irony?
Posted at 3:52 pm | Filed Under blogthropology, coding, customer service, lackofmeds, nerdiness, Social Media, web design, Wordpress, WTF
Yesterday I blogged about the hacking situation with GoDaddy hosting and a customer service call I had with them concerning some evidence I had found. While it is true that as this has progressed GoDaddy has widened their scope in investigating what the underlying cause of these hacks are, initially they claimed that the issue [...]
May - 13th
Hosting With GoDaddy? Might Want To Rethink That Decision.
Posted at 10:04 am | Filed Under blogthropology, coding, customer service, Wordpress, WTF
One of the services I offer people is cleaning their WordPress installations of hacks and infections, mostly for those who might not have the time or technical expertise to follow my hacked WordPress cleaning guide. Therefore when something happens that increases the number of people getting hacked, such as when a new exploit is discovered, [...]
keep looking »
