Comments on: Holy Spam Surge – Webmasters Beware dfgsdfgfr@r45t !!

By: Bob

Bob — Fri, 04 Dec 2009 11:47:19 +0000

It appear that world famous ethical hacker Ankit Fadia was also victim of this same attack, how he expect to teach fellow Indians about security if his own site broken into.

By: Jim

Jim — Mon, 12 May 2008 20:51:10 +0000

It’s much worse than that.
Google for XGHSLJJ2103@katok_05.05
Same construct, but this one is not pills but porno. It’s been around for years.

Attacks are similar:
Look for .htaccess files if using Apache.

By: Rob Scott

Rob Scott — Mon, 12 May 2008 17:12:24 +0000

Yes – we’ll be updating WordPress as soon as possibl – though that’s not the issue here i think as the security flaws in WP 2.3 were due to spam links being inserted into WordPress posts (and only on blogs which allowed user registration).

By: Alden

Alden — Sun, 11 May 2008 22:47:59 +0000

You should update your copy of Wordpress as well. It looks like you’re running version 2.3, which is insecure. The current version is 2.5.1.

By: Robert Kingston

Robert Kingston — Sun, 11 May 2008 03:36:41 +0000

Hey Rob,

That’s incredible… I couldn’t stand if someone spammed my site like that. Thanks for sharing in your comment on my site. I’ll be on the lookout for such spam attacks.

As for how it occured, I’m at a loss for answers too. Although, you may want to check your permissions in your directories and folders on your FTP. Even though it didn’t get through via FTP I think there are ways to change files without using FTP. Goodluck recovering from that one.

Ouch!