[TriLUG] OT: Wordpress Hack
Tarus Balog
tarus at opennms.org
Thu Jun 4 14:25:31 EDT 2009
I maintain a number of Wordpress blogs. Today I noticed an RSS update
on a very old page, and when I looked at it, hidden in the code was:
<span style="position: absolute; overflow: hidden; height: 0; width:
0;"><a href="http://sikongroup.com/rentacar/index.htm">коли под
наем</a><span style="position: absolute; overflow: hidden; height:
0; width: 0;"><a href="http://vtsc.info/en/publication/">distributed
raman amplifier</a></span><span style="position: absolute; overflow:
hidden; height: 0; width: 0;"><a href="http://groups.google.com/group/mebeli/web/furniture
">мебели</a></span></span>
My question it - how did it get there? I'm on Wordpress 2.7.1, which I
believe is the latest version. Is this a known attack?
-T
_______________________________________________________________________
Tarus Balog, OpenNMS Maintainer Main: +1 919 533 0160
The OpenNMS Group, Inc. Fax: +1 773 345 3645
Email: tarus at opennms.org URL: http://www.opennms.org
PGP Key Fingerprint: 8945 8521 9771 FEC9 5481 512B FECA 11D2 FD82 B45C
More information about the TriLUG
mailing list