Log in to your account
Sign up

Wordpress Blogs Defaced By Hackers

11 February 2017 | 0 comments | Posted by Che Kohler in Alarming

WordPress Blogs were hacked

A security flaw in the WordPress blogging software has let hackers attack and deface tens of thousands of sites. It has been replaced that unpatched blogs were at risk which is estimated at more than 1.5 million pages on various blogs have been defaced. The security firm that found the vulnerability said some hackers were now trying to use it to take over sites rather than just spoil pages. While WordPress has urged site owners to update software to and security protocols to their latest versions to avoid falling victim.

A WordPress hacking frenzy

The vulnerability is found in an add-on for the WordPress blogging software that was introduced in versions released at the end of 2016. WordPress users, especially those running the vulnerable 4.7 and 4.7.1 versions are encouraged to update to 4.7.2. as soon as possible Security firm Sucuri found the "severe" bug and informed WordPress about it on 20 January. In a blog post, WordPress said it delayed going public about the flaw so it could prompt hosting firms to update their software to a fixed version.

The patched version of WordPress was formally released on 26 January and led to many sites and blogs automatically applying the update. However, many blogs have not followed suit leaving them open to defacement attacks. Security firm WordFence said it had seen evidence that 20 hacker groups were trying to meddle with vulnerable sites. About 40,000 blogs are believed to have been hit. The vulnerability had set off a "feeding frenzy" among hacker groups, WordFence founder Mark Maunder told the Bleeping Computer tech news site.

Defaced WordPress Hack

"During the past 48 hours we have seen over 800,000 attacks exploiting this specific vulnerability across the WordPress sites we monitor," he added. Sucuri said some hacker groups had moved on from defacement to attempts to use the bug to hijack sites for their own ends."Attackers are starting to think of ways to monetise this vulnerability," wrote Sucuri founder Daniel Cid. "Defacements don't offer economic returns, so that will likely die soon." Hackers were keen to use the vulnerable sites as proxies for spam or malware campaigns, he said.

Secure your WordPress Site

If you suspect your site is under threat, has been hacked or you want peace of mind that your website is safe from exploits, feel free to comment with your website link in the comment below and we'll take a look.

Contact us

If you want to know more about WordPress don’t be shy we’re happy to assist. Simply contact us here

Source: BBC News

Tags: CMS, WordPress , hackers, cyber security

Previous: {{ previousBlog.sTitle }}

Posted {{ previousBlog.dtDatePosting }}

Next: {{ nextBlog.sTitle }}

Posted {{ nextBlog.dtDatePosting }}

You might also like

How to migrate your EOS tokens to their newly established mainnet

How To Migrate Your EOS ERC-20 Tokens To The EOS Mainnet

06 July 2018

Posted by Che Kohler in Money Talks

If you were an early investor in EOS and would like to convert your ERC-20 tokens to EOS tokens that are synced on their mainnet blockchain then here...

Read more
Creating a content marketing culture

How To Create A Company Culture of Content Marketing

09 September 2017

Posted by Che Kohler in nichemarket Advice

How to make content marketing part of your company culture and ensure you never run dry when it comes to new ideas or strategies

Read more

Leave us a comment


{{comment.iDayLastEdit}} day ago

{{comment.iDayLastEdit}} days ago


Sign up for our newsletter