THIS PLUGIN HACKED MY SITE!

crose13
(@crose13)

12 years, 10 months ago

Downloading this plugin, or trying to, loaded my computer up with scareware and hacked my site. My whole site is now down and constantly redirecting to scareware, viruses, and popups. I cannot get this fixed! Thanks a lot.

Viewing 7 replies - 1 through 7 (of 7 total)

Tom
(@jeffreeeeey)

12 years, 10 months ago

No it never.

tsany
(@tsany)

12 years, 10 months ago

actually it can 🙂

esmi
(@esmi)

12 years, 10 months ago

Highly unlikely. I’ve used that plugin myself before now – with absolutely no problems. It’s far more likely that the OP’s site/server was hacked and the plugin had nothing to do with it. People should be careful about throwing these kinds of accusations around without confirming them 110% first. If a dubious plugin is suspected and confirmed, then you should contact plugins@wordpress.org directly.

tsany
(@tsany)

12 years, 10 months ago

true that.. but some people reported the plugin and from the way i see it.. the owner has abandoned the plugin months ago.

esmi
(@esmi)

12 years, 10 months ago

Perhaps but that does not warrant an unsubstantiated report that it is responsible for any hacks etc.

Tom
(@jeffreeeeey)

12 years, 10 months ago

I’ve been using this plugin for a long time with no problems.

Also, see here

esmi
(@esmi)

12 years, 10 months ago

I contacted my host, who removed the rest I didn’t find. You’re right. All the articles say check .htaccess, but they inject a fake one in EVERY folder. This hack seems to be common but not often talked about, probably because many people wouldn’t notice and would assume their site is just messed up.

http://wordpress.org/support/topic/brend-storeru-hijacked-my-site-via-a-plugin#2159235

The OP has now recanted the original accusation. This topic is now closed.

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘THIS PLUGIN HACKED MY SITE!’ is closed to new replies.