Archive for 'WordPress'

Removing Recent Code Injection for WordPress

Removing Recent Code Injection for WordPress

In the last month or so many WordPress blogs were attacked and as a result most of the blogs were blocked with the infamous attack page (pictured below). This attack is a result of an iframe injection in the following templates; wp-blog-header.php wp-config.php wp-load.php These are the core WordPress files and in order to remove […]

Full Story

WordPress 3.1.4 Addresses Security Issues

WordPress 3.1.4 Addresses Security Issues

One good reason to update your WordPress installation to 3.1.4 is the security fixes in this release. WordPress 3.1.4 addresses a security vulnerability that could allow a malicious editor-level user to gain further access to the site. In addition to security fixes, there are a number of other fixes in this latest release from WordPress. […]

Full Story

Why Free WordPress Templates Can Be Dangerous

Why Free WordPress Templates Can Be Dangerous

I like free, but I also like my privacy and protection against dubious tricks and hidden nooks. There are many sites that offer Free Premium WordPress Templates, but what you may not know is that some of these sites have hidden code within these templates that are malicious. In some templates, you will find links […]

Full Story

Auto Blogs are Unethical and Downright Wrong

Auto Blogs are Unethical and Downright Wrong

Auto blogging is exactly what it says, its software (WordPress plug-in) that auto-generates content on a blog. Auto blogging is just a nice way of saying – Hey I am using your content to try to make money, because I am too darn lazy to do it myself. To me it’s stealing creative content from […]

Full Story

WordPress 3.0 Adds Better Security

WordPress 3.0 Adds Better Security

In regard to the current issues with security, WordPress developers put more emphasis on security with the newly released WordPress 3.0. The new welcome screen now has improved security measures to defend against brute force attacks. It now has options for choosing a username and setting your own password. In previous versions of WordPress the […]

Full Story

GoDaddy is No daddy when it comes to Security

GoDaddy is No daddy when it comes to Security

How can a company of this size be so vulnerable to the same attack that occurred less than a month ago? In fact, the people behind this attack are the same ones that executed the last attack against GoDaddy. GoDaddy’s servers were hacked Wednesday around 3pm EST, and thousand of WordPress blogs and other PHP […]

Full Story

How to Fix the Recent WordPress Hack

How to Fix the Recent WordPress Hack

I know there are many WordPress blogs that have been recently infected with Malware, and not only blogs hosted at GoDaddy. A friend today had his WordPress blog hacked and I immediately checked the source code and found a script located before the closed body tag </body>. When his blog would load, it would launch […]

Full Story

GoDaddy Addresses WordPress Attacks

GoDaddy Addresses WordPress Attacks

GoDaddy steps up to the plate in a timely fashion to address the latest WordPress exploits. In a recent blog post at GoDaddy, they are working to secure WordPress blogs that are vulnerable to exploits such as PHP injections and Malware. We’ve confirmed from reports we seen that customers of BlueHost, DreamHost, Media Temple, Network […]

Full Story

WordPress Under Attack Again

WordPress Under Attack Again

About a month ago it was WordPress blogs hosted at Network Solutions that were under attack, and now that list of host companies has expanded to DreamHost, GoDaddy, Bluehost and Media Temple. It’s disturbing that after the news about Network Solutions more than a month ago, you would think these host companies would have had […]

Full Story

WordPress Self Hosted Blogs Under Attack

WordPress Self Hosted Blogs Under Attack

There have been a number of reports about a WordPress hack affecting self-hosted WordPress blogs. The hack seems to affect WordPress 2.9.2, the latest version of the blogging platform. The attack leads into an infection chain that leads to various Malware, including a rogue antivirus which we written many articles about here. Facts about the […]

Full Story

Blogs Targeted By Cyber Crooks

Blogs Targeted By Cyber Crooks

If you’re one of the lucky blogs that have a good Pagerank and Alexa ranking, your blog could be in danger. In most cases, bloggers work hard to obtain good ranking scores and cyber crooks look for those same ingredients to target attacks. Cyber crooks are using Black Hat SEO to create backlinks to malicious […]

Full Story

Why You Should Moderate All Comments in WordPress

Why You Should Moderate All Comments in WordPress

In WordPress, you can choose how to moderate comments. I HIGHLY recommended that you moderate all comments! If you have “Comment author must have a previously approved comment” selected in “Discussions” under Settings in the WordPress Admin dashboard, you’re exposing your blog to comment spam and links to malicious sites. If you feel that this […]

Full Story