Posted 2 years ago #
Detailed here:
http://blog.sucuri.net/2010/05/seo-spam-network-details-of-wp-includes.html
We are seeing lots of WordPress sites with spam hidden inside the wp-includes directory. Many big sites got compromised as well and you should check your sites.
If your site is infected, can you save the content and send to us for analysis?
Posted 2 years ago #
A quick way to check your site:
1-Search on google for spam words + inurl:wp-includes + yoursite
2-Do a quick scan of of the wp-includes dir for files that shouldn't be there.
There is another method being used too, where a .files is created:
http://blog.sucuri.net/2010/05/it-is-not-over-seo-spam-on-sites.html
So check both places. If anyone have more info, let me know.
This topic has been closed to new replies.
