WordPress is popular. As such, it’s a ripe target for those who want to exploit the largest number of web applications with the least amount of effort. Over the past two years, Web malware has grown around 140%. At the same time, WordPress has exploded in popularity as a blogging platform and CMS, powering close to 30% of websites today. But that popularity comes at a price; it makes WordPress a target for Web-based malware. When hackers find an exploit, they will work their black magic and add something malicious to a target website.
One such malware attack is one that overwhelms parts of the WordPress code and adds on malicious code. That code primes out tons of fake pages for things like Cialis, Viagra and other dubious products. Here’s a short list of phrases that had been snugged into this poor website:
- homemade cialis
- liquid tadalafil
- viagra hearing loss reversible
- cialis trial canada
- amlodipine and erectile dysfunction
- who is the viagra girl
- viagra and hearing loss
- poppers and erectile dysfunction
- woman in viagra commercial kelly king
- prazosin coupon
- viagra and wine
- order cialis phone
- viagra dosage
- max cialis dosage
- cialis max dose
- otc ingredients
- viagra hours
- marley drug prices
- viagra football commercial
The malware I encountered messed with wp-blog-header.php to add on new code. I was able to rid my client’s site of the code, shore up the defenses of the website and clean up their online reputation. The best way to close the door on these exploits is to use the newest installation of WordPress with the best practice.
There are several things we’ll do keep your installation of WordPress ship shape:
- Update software: the core, plugins and themes
- Fix up your password credentials
- Improve system administration
- If all of the above doesn’t work, we can move the site to better hosting.
- Deploy best practices
If you want to do it yourself, where are two good articles on the topic:
https://www.wpwhitesecurity.com/wordpress-tutorial/clean-hacked-wordpres…
Still need help? Contact me.
