WordPress Iframe Hack: Sorta Fix

I enjoy not the hacks. Photo: Apple Logo and Flame

A couple of my sites, including this one, were compromised by an iframe hack. Some amorphous Internet blob puts fingers out into WordPress installs and puts one line of code in index.php, right above the first HTML tag. That code is an iframe with width=1 and height=1 (invisible) that manages to embed another (usually .cc domain on a site). Which then serves trojan horses or viruses or bullshit. Horrible.

Who does it? I dunno. It’s a business done at a grand, obscure scale. Darknet, Russians, whatever. Here’s how to fix it, at least temporarily.

1. Delete index.php in your WordPress install’s home folder (using FTP). Download a fresh WordPress and copy in a new file.
2. Delete and reinstall all plugins
3. Change all FTP, user and database passwords
4. Look around your WordPress install for suspicious looking files, or delete and reinstall the whole thing.

That holds this thing off at least temporarily, but I for one am just fed up. Shit keeps getting hacked all the time and, while I can almost always fix it, it’s slow and incredibly painful and sad.

I’m outsourcing this shit. Signing up for a Sucuri account and letting them handle security for like $25 a month (though all paid at once, gulp). It’s just too painful and it hurts business, gets me tossed of Google, etc. And I don’t understand how or whence it’s coming. If you notice anything odd over the next few days, lemme know.

More Reading:

Sucuri guide on cleaning up

Posted on Monday, June 13th, 2011 in blogging, Tech.

« Sex And Power
Dragon Fruit »

RSS feed | Trackback URI

4 Comments »

Lefroy
2011-06-13 20:10:51

I asked a friend about this and he told me not to install wordpress at all. He said that version 3 had really big security holes and he lost all faith in it.

Reply to this comment
SriLanka News Online
2011-06-14 08:04:17

Lefroy, people stone trees that have fruits. wordpress is the most popular blogging platform in the world. its super cool and has tons of plugins, themes and more. so naturally it will attract hackers. so don’t give up wordpress without giving it a try yourself :)

Reply to this comment
 
 
Lefroy
2011-06-14 08:25:28

Sri,
I use wordpress. But I’m no expert about it. Not gonna give up wordpress though. Giving up Windows and using Fedora makes more sense than that.

Reply to this comment
 
indi.ca » Return Of The IFrame
2011-06-30 13:13:19

[...] This is horrible. Has this site seen less malicious iframe hacks? Why yes it has. [...]

Reply to this comment
 
Name (required)
E-mail (required - never shown publicly)
URI
Your Comment (smaller size | larger size)
You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your comment.

email indi AT indi.ca.


Recent Comments


Why Does India Suck At The Olympics? (7)

swan: Duuuuude! Why no blog on SF?

Carasek: Growing up, my only impression of the average Chinese was that they were hard as nails. John Woo, Bruce Lee and Jackie Chan movies will have that effect, of course.

David Blacker: First I’d like to see what the average Indian is. Or Chinese for that matter.

Unequal Marriage In Sri Lanka (The Foreign Kind) (18)

DK: My thanks to everyone – well, perhaps not Acro – who has contributed to this. I’ve learned a lot. As I’ve said in a previous string I’m Sri Lankan-born, lost SL citizenship because of prevailing laws at the time I...

New New Kottu (7)

Chavie: Thanks bro. :)

Chavie: Yeps, any combination of language/popula rity that you use to view a page can be used to obtain a feed. Let’s say you’re looking at Sinhala posts popular today: http://kottu.or g/si/today You can get the feed for that...

D: Can we get separate RSS feeds based on the language?

General Sarath Fonseka Out Soon? (12)

David Blacker: Nothing wrong with the Sinhalese being divided by politics rather than united by ethnicity. And yes, of course SL must cooperate with an international investigation if one is initiated. We can’t afford not to. The idea is to...

You’re Nobody Till (45)

Regewaypere2: Asortyment uzupe?nia Outcast przestrzenna uciecha przygodowa i klisza Setnie Speedway. Nu?e na godzin? poprzednio wschodem s?o?ca nieruchomosci odby? wspomnian? z wykorzystaniem Benwolia przechadzk? w gaju sykomorowym mamy w...

Sarath Fonseka And Minority Politics (9)

tastyjujubes: Being more “Tamil 221; is not going to help the Sri Lankan Tamils to be honest. Being even more insular, introverted and ethnocentric is not going to help the Tamil people. The Tamils of Sri Lanka live on an island with a...

Why Does India Suck At The Olympics?

Today on the morning show we talked about the Olympics, namely China’s emerging dominance. For me the bigger question is India. Why does India suck so much? In 2008 the US won 110 medals, China won 100 and India won… 3. India has over a billion people, some economic clout and is by all counts an emerging superpower, but they suck at the Olympics. Why?

New New Kottu

Janith has updated Kottu with rims and shit. Seriously, it looks pretty good. You could say the desktop look is cosmetic, but check out the mobile. Kottu now looks like an app with settings and menus and such. The biggest problem with K2 is me, ie, it now takes me up to a month to respond to emails. OMG I’m scared of my email. But Janith’s done this code and design update all by himself and it looks pretty good. Check it out. There was one bug with the previous page link. Lettuce know if there’s any more.

Miss Travel. Alternately, Mistravel

This is highly dubious. Miss Travel is a travel/social networking site that connects ‘Generous’ and ‘Attractive’ travelers. To, like, travel together, I guess. It all seems a bit like arranged prostitution and trafficking. This is part of a broader online trend to connect rich men to younger, attractive women. Sites like seekingarrangement.com connects women to ‘sugar daddies’ already. I guess Miss Travel is just taking that trend international. Wait, I checked, it’s the same guy doing both.

Buying Appliances Online (Singer)

Sri Lankan domestics never say anything, they just stop coming. My maid just stopped coming and when I finally pressed her she said I needed to get a washing machine. I was hoping to ride this one out, but I’ve run out of underwear and I have no choice. I finally caved and bought a washing machine, from Singer, ONLINE. I put the online in all caps because it’s pretty awesome. I ordered the thing in like 15 minutes on Saturday and they just delivered it today. It’s pretty awesome, this brave new world.