fulltextI a couple of days ago, I wasn't able to login into a blog. I then saw, "Hacked by " instead of the usual "« Back to AGoldenMedia."
A couple of days ago, I wasn't able to login into a WP blog on SSG. I then saw, "Hacked By Nusaybinli Kurdish Hacker NsbHack.Com " instead of the usual « Back to AGoldenMedia.
So, I copied the database, set-up wp on a new database, and restored the site. I had to weed out stuff in the database such as a new email that the hacker had placed in there. Not really a big deal, luckily for me.
It gets stranger. The hacker put up a site with how and why my blog was hacked:
http://turk-h.org/defacement/view/299166/agoldenmedia.com/
Url : agoldenmedia.com/
Operation system : Unix
Attacker : NsbHack.Com | Stats
Web server : Apache/1.3.41 (Unix)..
Mirror Save Time : 29.07.2008 02:07:02
Page code lang : Php
Full Screen Mirror : Display Full Screen Mirror
Attack Technics : Trojan, Spy vs
Status : OnHold
Attack Reason : Politik Sebepler
I have to say that I have anti virus and anti spyware programs running, but wasn't picked up at the time. May have been weeded out since.
ajita