1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Found Malware From Theme uploaded by "InnovativeSeo"

Discussion in 'BlackHat Lounge' started by deal with it, Apr 26, 2017.

  1. deal with it

    deal with it Power Member

    Joined:
    Sep 30, 2015
    Messages:
    629
    Likes Received:
    278
    Gender:
    Male
    My site got hacked and was redirecting all urls typed directly into address to some malware website, the hosting technical support confirmed that its due to the malicious content in themeforest theme.

    Message :

    We have removed the hacked contents from your site.
    The issue was with your theme "themeforest" header file contained malicious contents.
    You have to upgrade the plugins, theme, and reset all password for avoiding the hacking in future.


    I made this thread coz so many people have used these themes.

    Better buy a Theme.
     
    • Thanks Thanks x 2
  2. ResNetworking

    ResNetworking Jr. VIP Jr. VIP

    Joined:
    Jan 9, 2017
    Messages:
    124
    Likes Received:
    18
    Gender:
    Male
    Hey man thanks for PSA.. crazy.. im removing mine right now.
     
  3. Automation247

    Automation247 Regular Member

    Joined:
    Jan 21, 2014
    Messages:
    486
    Likes Received:
    171
    Gender:
    Male
    Occupation:
    Making some $$$
    Location:
    SPAMMING 24/7 FROM SOMEWHERE IN EUROPE
    Home Page:
    Mate, when you're running a business is better to invest some money in themes, plugins..etc a situation like this can cost you more $$$

    P.S. Also you need to value the time spent by the developer to create/update his work. Pay him for his work.
     
    • Thanks Thanks x 2
  4. Society Girl

    Society Girl Marketplace Mod Staff Member Moderator Jr. VIP

    Joined:
    Feb 20, 2014
    Messages:
    657
    Likes Received:
    556
    Occupation:
    Customer Support
    Location:
    London
    NEVER USE PIRATED THEMES. Even if they are "safe", you they are probably dropping cookies/ads or something that doesn't do 'direct' damage, but can be an inconvenience or slow down the site.
     
    • Thanks Thanks x 6
  5. MisterF

    MisterF Jr. VIP Jr. VIP

    Joined:
    Nov 29, 2009
    Messages:
    7,856
    Likes Received:
    6,384
    Occupation:
    Conference Organiser, Business Advisor.,
    Location:
    JADIP
    Home Page:
    It's sad that people feel the need to inject malicious code into themes.

    VT scans don't always pick up some of these, so take Virus Total results on face value as they're showing the results for scanning the file not the application, plug-in or theme as such.

    Best advice is avoid these shares, save some money and buy the genuine product.
     
    • Thanks Thanks x 1
  6. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Jr. VIP

    Joined:
    Nov 10, 2012
    Messages:
    12,629
    Likes Received:
    34,785
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
  7. Automation247

    Automation247 Regular Member

    Joined:
    Jan 21, 2014
    Messages:
    486
    Likes Received:
    171
    Gender:
    Male
    Occupation:
    Making some $$$
    Location:
    SPAMMING 24/7 FROM SOMEWHERE IN EUROPE
    Home Page:
  8. beastboy85

    beastboy85 BANNED BANNED

    Joined:
    Apr 26, 2017
    Messages:
    43
    Likes Received:
    4
    Gender:
    Male
    What can you expect more from pirated themes?
     
  9. I know SEO

    I know SEO Marketplace Mod Moderator

    Joined:
    Nov 29, 2012
    Messages:
    16,534
    Likes Received:
    6,191
    Can you tell me what theme it was please?

    Are you sure it was uploaded with malware or could it have been hacked because you didn't update it?
     
  10. mickyfu

    mickyfu Jr. VIP Jr. VIP

    Joined:
    Dec 14, 2011
    Messages:
    7,580
    Likes Received:
    21,579
    Occupation:
    King Of Crypto C
    Location:
    Solihull Young Offenders
    Yeah. Wish I'd made him wear a condom now.
     
    • Thanks Thanks x 5
  11. virtualpurity

    virtualpurity Jr. VIP Jr. VIP

    Joined:
    Nov 12, 2012
    Messages:
    862
    Likes Received:
    498
    Occupation:
    SEO, Hosting
    Location:
    /root
    Home Page:
    He maybe didnt even know that the themes are bugged if he copy-pasted them from somewhere..

    99% of the cracked/nulled wordpress themes are backdoored. Avoid wplocker and similar sites when looking for a theme...Even if nothing is going on for a while they could always be activated and do damage later on.

    50-60$ is nothing for a theme from which you can make various websites is not much investment for anyone who wants to avoid headaches.
     
    • Thanks Thanks x 1
    Last edited: Apr 26, 2017
  12. deal with it

    deal with it Power Member

    Joined:
    Sep 30, 2015
    Messages:
    629
    Likes Received:
    278
    Gender:
    Male
    i forgot from where i got that. it was not on the main op it was shared somewhere in the thread, the theme was Newspaper 6

    google operators are also not working fine for me to find the actual post. i dont remember the keywords
     
  13. deal with it

    deal with it Power Member

    Joined:
    Sep 30, 2015
    Messages:
    629
    Likes Received:
    278
    Gender:
    Male
  14. InnovativeSEO

    InnovativeSEO Senior Member

    Joined:
    Feb 5, 2013
    Messages:
    912
    Likes Received:
    3,868
    Gender:
    Male
    Occupation:
    Investigative Services | Business Intelligence
    Location:
    New York City
    Home Page:
    I love a good conspiracy:
    It's interesting that I happened to find this post today.
    Less than 45 minutes ago I was speaking with a client on the importance of establishing an effective brand strategy both on/off line. Within that discussion we discussed his need to proactively manage his reputation? I ran a few example searches using name identifers to illustratine the impact the "net" can have on a person's reputation. I searched my BHW identity "InnovativeSEO BlackhatWorld" and quickly skimmed for key phrases.

    [​IMG]
    Found Malware From Theme uploaded by "InnovativeSeo" | BlackHatWorld - The Home of Internet...Apr 26, 2017 · 13 posts · 10 authors
    My site got hacked and was redirecting all urls typed directly into address to some malware website, the hosting technical support confirmed that its due to the malicious content in themeforest theme.
     
  15. deal with it

    deal with it Power Member

    Joined:
    Sep 30, 2015
    Messages:
    629
    Likes Received:
    278
    Gender:
    Male
    no its true, i dont have time to do all this shit.
     
  16. InnovativeSEO

    InnovativeSEO Senior Member

    Joined:
    Feb 5, 2013
    Messages:
    912
    Likes Received:
    3,868
    Gender:
    Male
    Occupation:
    Investigative Services | Business Intelligence
    Location:
    New York City
    Home Page:
    "What" exactly are you referring to be true?
     
  17. Stealth Kill

    Stealth Kill Junior Member

    Joined:
    Mar 6, 2016
    Messages:
    138
    Likes Received:
    69
    There is lots of stuff like that also in free templates. If you can make your own.
     
  18. virtualpurity

    virtualpurity Jr. VIP Jr. VIP

    Joined:
    Nov 12, 2012
    Messages:
    862
    Likes Received:
    498
    Occupation:
    SEO, Hosting
    Location:
    /root
    Home Page:
    That his website got hacked because of your upload i guess.

    You are the one that posted all of these themes.. Did you cracked them yourself or just copy pasted them from wplocker or similar websites ?

    If you cracked them yourself than it would suggest a malicious activity coming from your end which is against BHW TOS..

    If you copied them from somewhere than why not just post the link where the themes can be downloaded so you can avoid any direct responsibility...

    if you ask me posting cracked/nulled themes/plugins should be banned on bhw..
     
  19. ZlatanTheGod

    ZlatanTheGod Jr. VIP Jr. VIP

    Joined:
    Jun 27, 2016
    Messages:
    1,119
    Likes Received:
    1,724
    Gender:
    Male
    Occupation:
    The God
    Home Page:
  20. Margatsni

    Margatsni Registered Member

    Joined:
    Nov 6, 2017
    Messages:
    71
    Likes Received:
    22
    Occupation:
    you are now aware
    Location:
    that you are manually
    Judging by his non-nonchalantness with his reply. Acting like he doesn't give a fuck about all the potential damage his posts could have caused.

    I'd assume he was aware of it.