Fraudsters have set up a fake site featuring a backdoored version of the WordPress blogging application as part of a sophisticated malware-based attack. The fake Wordpresz.org site offered up what purports to be version 2.6.4 of the open source blogging tool. In reality all but one of the files are identical to the latest …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Thursday 6th November 2008 19:15 GMT Anonymous Coward

automatic updating ... at last

> Also in the upcoming 2.7 release of WordPress we are including a built-in upgrade mechanism within WordPress which will allow people to upgrade automatically with ease.

At last! This has been one of the remaining few pains of using Wordpress.

0 0
Friday 7th November 2008 11:04 GMT Moss Icely Spaceport

It's only bloggers

Move along, there's nothing to see here....

0 0
Friday 7th November 2008 11:04 GMT Terry Brown

Automatic Updating... erm, you can do it now...

Download this plugin : http://techie-buzz.com/wordpress-plugins/wordpress-automatic-upgrade-12-release.html

When an update is available it lets you know, a few clicks and it does it all for you. Very nice plugin, I believe it's this one that's being used in 2.7

0 0
Friday 7th November 2008 11:04 GMT Bruno de Florence

In that case

Doesn't The Register use WordPress? So should I stop reading The Register online? Na, joking.

0 0
Friday 7th November 2008 19:27 GMT doc

Bots and Hacks Still expoitable

More on Wordpress 2.6.2 and 2.6.3 exploits.

Malicious damage can be caused by exploits from JadenAveBot used by PSI; hosted by Cogentco. The trick is writing exclusions in the robot.txt

****User-agent: Bad bot

Disallow: / cgi-bin /

Disallow: / images /

Disallow: / tmp /

Disallow: / private /

Disallow: /wp-content /

Disallow: /wp-admin /

User-agent: Snapbot

Disallow: / cgi-bin /

Disallow: / images /

Disallow: / tmp /

Disallow: / private /

Disallow: /wp-content /

Disallow: /wp-admin /

User-agent: ShopWiki

Disallow: / cgi-bin /

Disallow: / images /

Disallow: / tmp /

Disallow: / private /

Disallow: /wp-content /

Disallow: /wp-admin /

User-agent: Voyager

Disallow: / cgi-bin /

Disallow: / images /

Disallow: / tmp /

Disallow: / private /

Disallow: /wp-content /

Disallow: /wp-admin /

User-agent:JadynAveBot

Disallow: / cgi-bin /

Disallow: / images /

Disallow: / tmp /

Disallow: / private /

Disallow: /wp-content /

Disallow: /wp-admin /****

another trick is to excluded websites using PHP Script and htaccess files to work together to ban sites and user defined ranges to limit access to wordpress sites.

0 0

This topic is closed for new posts.

Topics

Special Features

Vendor Voice

Resources

User topics

Article topics

User topics

Article topics

Fake site punts Trojanised WordPress

COMMENTS

automatic updating ... at last

It's only bloggers

Automatic Updating... erm, you can do it now...

In that case

Bots and Hacks Still expoitable

Other stories you might like

Ransomware more efficient than ever, and baddies are still after your logs

Thwarted ransomware raid targeting WS_FTP servers demanded just 0.018 BTC

China caught – again – with its malware in another nation's power grid

Thousands of Sophos firewalls still vulnerable out there to hijacking

How fiends abuse an out-of-date Microsoft Windows driver to infect victims

Qbot malware adapts to live another day … and another …

That 3CX supply chain attack keeps getting worse: Other vendors hit

Romance scam targets security researcher, hilarity ensues

Russian charged with smuggling US counterintel tech to Motherland

Sophos fixes critical firewall hole exploited by miscreants

Weep for the cybercriminals who fell for online scams and lost $2.5m last year

Godfather malware makes banking apps an offer they can’t refuse

About Us

Our Websites

Your Privacy