I’m running the latest 2.8.4 and went to my admin page for my wp blog and the standard login page had been replaced by a page stating “haCked By r00t-x”
i now have no access to my admin, after reading around a couple of forums;
the general solution seems to be server side. It would appear that;
1. It is a server level vulnerability
2. The hacker gains access to the server (probably embedded within a program/plugin such as ZenCart/or any other uploaded by another hosted customer) and runs a script
3. The script recursively modified all files that start with “index” or “admin” or something like that. this may also include files that end in “admin.js” or any other admin.other ending.
While my host server guys are trying to fix it they suggested “You will still need to update this script by looking int Wpress site or forums for known issues and updates.”
i can see no mention of this hack on the forums. anyone else experienced it?
- The topic ‘Anyone been “haCked By r00t-x”’ is closed to new replies.