WordPress.org

Ready to get started?Download WordPress

Forums

WordPress hacked - jetpack plugin (2 posts)

  1. matthisco
    Member
    Posted 1 year ago #

    Hi Folks,

    Our shared hosting was hacked recently.

    Server logs show the culprit to be the jetpack plugin. Afer the plugin was updated, sites started to go down. All is well now though after resinstalling backups and getting things back online.

    Has anyone had similar problems with this plugin?

    Each site we have is a individual install, I'm thinking about a multisite install so we can roll out updates more easily.

    Any advice much appreciated.

  2. Our shared hosting was hacked recently.

    Sorry to hear that, have you successfully deloused your installation including your server?

    If you haven't already done so then you need to start working your way through these resources:
    http://codex.wordpress.org/FAQ_My_site_was_hacked
    http://wordpress.org/support/topic/268083#post-1065779
    http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
    http://ottopress.com/2009/hacked-wordpress-backdoors/

    Additional Resources:
    http://sitecheck.sucuri.net/scanner/
    http://www.unmaskparasites.com/
    http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html
    http://codex.wordpress.org/Hardening_WordPress
    http://www.studiopress.com/tips/wordpress-site-security.htm

    Server logs show the culprit to be the jetpack plugin. Afer the plugin was updated, sites started to go down. All is well now though after resinstalling backups and getting things back online.

    Anything is possible but that doesn't seem to be very precise accurate. Looking at other posts can you use the contact form for Jetpack?

    http://en.support.wordpress.com/contact/?jetpack=needs-service

    That should let you contact the plugin author. If you can provide them with details on why your host thinks it's a Jetpack issue I'm sure they'll appreciate that.

    Keep in mind that a compromised server will lead to other files being compromised. That can lead to erroneous conclusions.

    I don't know if it's Jetpack or not but if it were then there would be a HUGE wave of reports. It's a popular plugin.

Topic Closed

This topic has been closed to new replies.

About this Topic