search the site

Tuesday, September 27, 2011

50000 WordPress Sites infected with spam

http://t2.gstatic.com/images?q=tbn:ANd9GcQo1KLBXnkEGvLZFugdzOEb7UkngWD-vtgPa-xEFIev9gPAakVm
The attack consists of contacting the domain wplinksforwork.com to get a list of links to be displayed on the compromised sites. 

However, that domain has been down for the last few days and all the sites compromised. These sites supposed to be compromised. 

Most of the hacked sites had outdated versions of WordPress installed.

Infected sites have following message at Footer :
Warning: 


 file_get_contents(http://wplinksforwork.com/56132.. 47509328/p.php?host=… failed to open stream: php_network_getaddresses: getaddrinfo failed: Name or service not known in ..



https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgzrW-LQkv_2jpVpkGbb-R1SWelTMj3m0P8812XjR5otHkPzjnBl6G1La-b-55wW7vdiH7d4plhf0cRIWJFR8BrVTVWfzhWmbbaEpMqF4Jw71Ae8Wf1UJe1WPUPtxULGdzyxCVqhBv870k/s1600/spam-wplinks-650x399.png

No comments: