WordPress.org

Support

Support » Plugins and Hacks » Akismet » [Resolved] New SPAM from that plugin

[Resolved] New SPAM from that plugin

  • I receive several scam emails “Your Direct Deposit payment ID 65484664 was declined” from that akismet plugin. In email contain link to /wp-content/plugins/akismet/track.php?c003 that is redirect to other fraudlent bank website.

    Edit: This was Vulnerability cross site scripting.

Viewing 9 replies - 1 through 9 (of 9 total)
  • esmi

    @esmi

    Forum Moderator

    Site url? I think your site may have been hacked. There’s absolutely nothing in Akismet that does this.

    You did not know what sendmail does script in askimet

    esmi

    @esmi

    Forum Moderator

    This is NOT coming from the original Akismet plugin. There is no track.php in the plugin. Re-download the plugin yourself and see. Your site has been hacked.

    I looked at browser history and here this link from email http://new-demo-site.com/wp-content/plugins/akismet/track.php?c003 take look. Now script broken. Earlier that link was working redirect.

    By the way I am not using wordpress and that plugin. I just inform a warning that I received fraudlent emails.

    esmi

    @esmi

    Forum Moderator

    Your site has been hacked.

    esmi

    @esmi

    Forum Moderator

    Then the site that it is emanating from has been hacked.

    Esmi, You are correct that their website hacked.

    esmi

    @esmi

    Forum Moderator

    Thank you. But this is not because of the plugin. Hackers can, and often will, add scripts to multiple folders in a site once they gain access. The site in question needs to be completely cleaned.

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘[Resolved] New SPAM from that plugin’ is closed to new replies.
Skip to toolbar