Wordpress blogs hacked – Upgrade your Wordpress NOW!

wordpress-logo-stacked-bg-1Older versions of wordpress have security holes and are under attack. Scooble’s Scoble’s wordpress blog was hacked, after which he isn’t feeling very safe. The worst part – he didn’t have a backup!

I use wordpress form my blogs (including this one) and have upgraded all of them to 2.8.4. I urge everyone using wordpress to upgrade to the latest release.

Here’s how you can check if you’re already being attacked:

There are two clues that your WordPress site has been attacked.

There are strange additions to the pretty permalinks, such as example.com/category/post-title/%&(%7B$%7Beval(base64_decode($_SERVER%5BHTTP_REFERER%5D))%7D%7D|.+)&%/. The keywords are “eval” and “base64_decode.”

Here’s a blog post from wordpress on How to Keep Your Wordpress Secure:

A stitch in time saves nine. I couldn’t sew my way out of a bag, but it’s true advice for bloggers as well — a little bit of work on an upgrade now saves a lot of work fixing something later.

Posted by Niranjan on September 7th, 2009 in News |
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...
You might be interested in these as well:

2 Responses to 'Wordpress blogs hacked – Upgrade your Wordpress NOW!'

Subscribe to comments with RSS or TrackBack to 'Wordpress blogs hacked – Upgrade your Wordpress NOW!'.

  1. Suva said,

    on November 24th, 2009 at 6:13 pm

    Actually the site that was hacked was Scoble, not Scooble. Scooble is a pet website.

  2. Niranjan said,

    on November 24th, 2009 at 7:08 pm

    Thanks Suva. I’ve updated the post with correction :)

Post a comment