HackedΒΆ
January 15, 2012
I’ve been hacked! I guess I deserve for leaving this site unloved for too many months. I can hardly blame my hosting provider, they were much more on top of the situation than I was.
Here at Lunarpages, we are always looking out to protect you and your
account. During a recent security scan on your server, we found the
following script on your account:
Script: wp-admin/r57.php
Reason: Possible Dark Mailer or r57 script please check
At that point I hadn’t touched my blog in months, and pledged to take a look at the problem later. A few days later, I received another message from lunarpages:
During another recent security scan on your server, we found another
malicious script on your account:
Script: wp-admin/G11.php
Reason: Sniper viewer
Uh oh. I took a look at the site and saw my familiar WordPress theme replaced with their calling card. How did they get into my site and replace the front page. “Oh, we’ve seen that a lot”, was what the lunarpages help desk told me. was that possible? Did they somehow steal my password? Turns out, you have to be careful which WordPress themes you install, which plug-ins you use, and be diligent about keeping WordPress up-to-date.
Sorry WordPress, I know you have thousands of themes, thousands of plug-ins, and millions of users. But I’d rather spend my time on Python than worrying if I’m running the latest and greatest. I’ll be using Sphinx for the moment, until I get back in the swing of posting.
— Dan