|03 May 2010||#1|
| || |
WordPress on GoDaddy.com hacked [Updated]
Update: GoDaddy has posted a message on Neowin.net, confirming that the sites that were compromised do have an outdated version of WordPress, either active or inactive on their hosting plans. GoDaddy also mentioned that the compromise might be present on other hosting providers too.
"TonyLock and All,
I work on Go Daddy's Social Media Team and we're working with our Security Operations Center to locate examples of non-WordPress sites that have been compromised. If you're comfortable with sharing example domains, please feel free to PM them to me.
Please know that we're actively working to identify the issue and resolve it. Further, we've published steps to correct the issue at http://fwd4.me/MFK. As we continue to investigate the matter, our Security Team has noted that reports of sites with this malware that were not WordPress blogs have the commonality that an outdated version of WordPress is either powering part of the site or that it is not in use, but is still present on the hosting plan. Additionally, we have heard reports of the compromise occurring on other hosting providers.
Again, we are actively and aggressively working to identify the cause and we've published a means to correct it - http://fwd4.me/MFK .
Some WordPress users using GoDaddy hosting servers may have been seeing malware injections into their code. The compromised sites were usually outdated WordPress versions or had weak FTP passwords, according to godaddy.com.
Users began seeing lines of added code at the top and bottom of their websites, linking to the website http://kdjkfjskdfjlskdjf.com.
GoDaddy was aware of the situation today, tweeting that they are looking into the issue, but have confirmed the injection and posted a message on their community forums how to correct the malware injection.
Neowin.net - WordPress on GoDaddy.com hacked [Updated]
|My System Specs|
|Similar help and support threads for2: WordPress on GoDaddy.com hacked [Updated]|
|setting ujp wordpress blog||Chillout Room|
|Any fellow wordpress users, beware:||Chillout Room|
|How to get my godaddy account to act the same as gmail?||Browsers & Mail|
|POP3 or IMAP through godaddy?||Browsers & Mail|