WordPress.org

Ready to get started?Download WordPress

Forums

!nf3rN.4lL Hack attack in wordpress (13 posts)

  1. stravaiger
    Member
    Posted 8 years ago #

    Anyone seen !nf3rN.4lL - it gets hold of the admin password in wordpress and hacks the blog

  2. Mark (podz)
    Support Maven
    Posted 8 years ago #

    Proof ?
    Now ?

  3. stravaiger
    Member
    Posted 8 years ago #

    My blog was just compromised - the title was changed to !nf3rN.4lL as was the description. Searching on google produces blogs and forums that are !nf3rN.4lL hacked.

  4. stravaiger
    Member
    Posted 8 years ago #

    oh, and there as a post saying "hacked by !nf3rN.4lL" and it was by "admin".

  5. Mark (podz)
    Support Maven
    Posted 8 years ago #

    This very probably has nothing at all whatsoever to do with WordPress.

    The fact is your blog is a very public page which is why it has been defaced.

    Look at the server security and the security of other php apps that have known holes the size of trains in first.

  6. Mark (podz)
    Support Maven
    Posted 8 years ago #

    Change ALL your passwords.
    Every single one.
    Now.

  7. estjohn
    Member
    Posted 8 years ago #

    Probabally a MySQL injection from vulnerabilities in the plugins.. im guessing you are probabally running something that executes php in posts?

  8. stravaiger
    Member
    Posted 8 years ago #

    Does it have anything to do with this?

    http://marc.theaimsgroup.com/?l=bugtraq&m=111661517716733&w=2

  9. Mark (podz)
    Support Maven
    Posted 8 years ago #

    Seen the date on that ?

    Update.

  10. chaaban
    Member
    Posted 8 years ago #

    Results 1 - 7 of about 11,000 for !nf3rN.4lL

  11. stravaiger
    Member
    Posted 8 years ago #

    I've seen the same defacement on phpbb - how can I trace this as it's a hole in my wordpress!

  12. Mark (podz)
    Support Maven
    Posted 8 years ago #

    It is NOT a hole in WordPress.

    WordPress 1.5.2 has NO known holes.

    UPDATE

  13. estjohn
    Member
    Posted 8 years ago #

    First, it is not a "hole" in wordpress, it is a mysql injection
    2nd its from may 15th at least of 2005
    3rd the solution is to Upgrade to wordpress 1.5.1

    so if you are running the latest version 1.5.2... its patched

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.