Archive by Author

New PHP Exploit on the Loose

In a follow up to the PHP Injection Script Exploit Gumblar.cn, there is a new version on the loose: Martuz.cn. It is the evolution of the Gumblar.cn script – much nastier than the first. Instead of just injecting code onto PHP and JavaScript files, it goes further by adding new PHP files to your images […]

Full Story

PHP Script Injection Exploit in WordPress 2.7.1

PHP Script Injection Exploit in WordPress 2.7.1

I experienced my first site hack this weekend thanks to a warning message from Kaspersky Internet Security. When I logged into the admin panel of WordPress, it detected the gumblar.cn/rss/?* in my Firefox browser. After a little Google research, I found out that this was a PHP script injection that had found its way into […]

Full Story