Blog Pack

Blog staff, as life itself

Dog that barks does not bite while barking ......
Spanish flagEnglish flag
By N2H

Wordpress committed

Archived on: Denunciation, Informatica, Recipes and tricks - Packo at 4:21 a.m. on Thursday, January 3, 2008

This afternoon detected that my blog was committed. In Mozilla Firefox addons: noscript, I saw that were charged scripts of three sites that did not know, on information from the page, I saw that in the links section has some links to Win32 executable of the domains:

  • cyb520.com
  • llboss.com

More information on the following picture:

Intromision image

After several unsuccessful evidence of connection I have concluded that these sites vary cyclically and every bit of time ip, so it is only possible to verify what I said at certain times, like I am wrong.

I suppose that through some bugs in the xmlrpc succeeded in getting some posts an iframe which loads the page http://www.wp-stats-php.info/iframe/wp-stats.php as follows:

Malicious code

It would be good if you try to read it on his blog. I for my part as reportaré morning to Wordpress.com.

Current version of the blog: 2.3.2
Version at the time of infection: <2.3.2

1 comment »

Gravatar

Comments by Packo

9 January 2008 @ 13:55

I just read a story in Kriptópolis that is related but I do not think that is the same security hole, although it seems.

News

Using Mozilla Firefox Mozilla Firefox 2.0.0.11 on Ubuntu Linux Ubuntu Linux

Retransmission RSS comments from the entrance. TrackBack URI

Leave a comment

XHTML: You can use these tags: <a href="" title=""> <ABBR title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> < the datetime = ""> <em> <i> <q cite=""> <strike> <strong>

Theme for Packo, based on Dixie Belle Theme by geeksmakemehot.com.
For WordPress