Page 1 of 3 123 LastLast
Results 1 to 10 of 30

Thread: WordPress Attack Underway: WordPress Users Must Upgrade [ALERT]

  1. #1
    Aquarezz's Avatar
    Aquarezz is offline Master Net Builder
    Join Date
    Dec 2008
    Location
    Belgium
    Posts
    3,853
    Blog Entries
    4
    Thanks
    683
    Thanked 591 Times in 463 Posts

    Exclamation WordPress Attack Underway: WordPress Users Must Upgrade [ALERT]

    If you’re running a self-hosted WordPress blog that isn’t up-to-date (version 2.8.4), you’re advised to upgrade immediately to the latest version of the software to avoid an ongoing attack. Users of WordPress.com hosted blogs are not affected.

    More on Mashable.Com

    All my blogs are up-to-date, make sure yours are too!
    |Nico Lawsons

  2. Thanked by:

    Alastor (6 September, 2009), bogart (6 September, 2009), DotComBum (6 September, 2009), Hellas (5 September, 2009), Oranges (6 September, 2009), Shenron (6 September, 2009), Will.Spencer (7 September, 2009)

  3. #2
    badmash's Avatar
    badmash is offline Aham Brahmasmi
    Join Date
    Jul 2009
    Posts
    661
    Thanks
    65
    Thanked 139 Times in 110 Posts
    I am already Inf3ected by this stupid attack and now I have to go to wp community for help .

  4. #3
    Alastor's Avatar
    Alastor is offline Newbie Net Builder
    Join Date
    Feb 2009
    Location
    SoCal
    Posts
    55
    Thanks
    21
    Thanked 25 Times in 18 Posts

  5. Thanked by:

    bogart (6 September, 2009), DotComBum (6 September, 2009)

  6. #4
    dmi's Avatar
    dmi
    dmi is offline Net Builder
    Join Date
    Mar 2009
    Location
    N43°54′, E017°40′
    Posts
    242
    Thanks
    141
    Thanked 56 Times in 28 Posts
    I have upgraded all my Wordpress-based sites a few days ago.

  7. #5
    bogart's Avatar
    bogart is offline Super Moderator
    Join Date
    May 2009
    Location
    New York
    Posts
    3,772
    Thanks
    1,886
    Thanked 776 Times in 609 Posts
    This is a pain. I'm upgrading a few blogs running wp 2.3 and I need to reinstall wordpress.

  8. #6
    Keldorn's Avatar
    Keldorn is offline Net Builder
    Join Date
    Dec 2008
    Location
    Canada
    Posts
    400
    Thanks
    21
    Thanked 60 Times in 52 Posts
    What if you have some minisites running wordpress you forgot about, and just are a bit lazy and just change the Unix file permssion on the whole public_html folder and every file to 555, Surly they couldn't modify anything without write permissions could they?

    edit: Except it wouldn't protect against a SQL injection.
    Submit new proxies -

  9. #7
    chatterbox's Avatar
    chatterbox is offline Newbie Net Builder
    Join Date
    Jul 2009
    Location
    Australia
    Posts
    141
    Thanks
    15
    Thanked 12 Times in 10 Posts
    Yeap, a real pain. Haven't lost any yet, but I'm in the middle of a server move, so can't get to upgrade all today.
    Sound Unsound is a music forum for Unsigned Artists, Dj's and Producers
    Others: PDA and Smartphone guide | What task will you do for cheap? | Crazy Links 4 Free

  10. #8
    badmash's Avatar
    badmash is offline Aham Brahmasmi
    Join Date
    Jul 2009
    Posts
    661
    Thanks
    65
    Thanked 139 Times in 110 Posts
    Yoo , Now I am free and upated all my blogs and database . 3 blogs were infected but now everything is fine .

  11. #9
    Come's Avatar
    Come is offline Building a Twitter Empire
    Join Date
    Dec 2008
    Location
    Martinique, FWI
    Posts
    321
    Blog Entries
    6
    Thanks
    27
    Thanked 44 Times in 37 Posts
    Switch to dotclear.org or somethin else. WP is becoming a bad CMS.

    Edit: I'm doing some research about this worm. If you have some apache logs with weird requests please send me an email. If you want to know more about my security skills check my portfolio. Your help will be greatly apreciated !

    Thanks !
    Last edited by Come; 6 September, 2009 at 18:33 PM.

  12. #10
    bogart's Avatar
    bogart is offline Super Moderator
    Join Date
    May 2009
    Location
    New York
    Posts
    3,772
    Thanks
    1,886
    Thanked 776 Times in 609 Posts
    The sites that I'm using as weblogs, I've updated to 2.8.4

    The older sites I will have to get to them later. Even with wordpress 2.7, you must re-install worpress as there is an auto install option.

    As long as you have a back-up, I don't believe it is a big issue. It's very easy to delete the whole site and to do a clean install.

Page 1 of 3 123 LastLast

Similar Threads

  1. Wordpress Automatic Upgrade Problem
    By Pathan in forum Wordpress
    Replies: 9
    Last Post: 13 September, 2009, 08:39 AM
  2. Replies: 14
    Last Post: 30 August, 2009, 03:33 AM
  3. Replies: 0
    Last Post: 2 August, 2009, 07:59 AM
  4. Wordpress 2.8.1 upgrade mandatory
    By sizzler_chetan in forum Wordpress
    Replies: 3
    Last Post: 11 July, 2009, 22:01 PM
  5. SEO Tip for Wordpress users.
    By mega in forum Promoting
    Replies: 0
    Last Post: 11 May, 2009, 00:58 AM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •