1. This website uses cookies to improve service and provide a tailored user experience. By using this site, you agree to this use. See our Cookie Policy.
    Dismiss Notice

My wordpress blog defaced by Palestinian hacker

Discussion in 'Blogging' started by Mstrpln, Dec 27, 2009.

  1. Mstrpln

    Mstrpln Newbie

    Oct 24, 2009
    Likes Received:
    Hey! Merry Christmas over there.

    One of my blog was defaced on Christmas eve by palesinian hacker who calls himself the storm or some shit like that...

    It seems he found some exploit wp admin. nothing big biut he got in somehow through the recover password function. he changed the admin password and email, and only my index.php templayte file was modified and needless to say this has cost me some serious $$$ money :eek:

    I took the following action:
    dropped writing permissions on template folder
    on paranoid mode I created a ip restriction foir wp-login.php
    if ($_SERVER[REMOTE_ADDR] != 'my.real.ip.address'){exit;}

    more information on this exploit here

    have a merry christmas with your family and friends!!