Blogging

Attention WebMaster’s & Bloggers–You might also be trapped

By Shefeek Jinnah - For Technical Information June 1, 2009 Email This Post Email This Post Post a comment


Do you own a website or a wordpress blog.Are you doing SEO on your blog and trying to get maximum traffic.Then you must be aware of this threat.I am writing this post now because I am just out of this threat.I was freezed for the last one hour realizing the fact that my wesite is being hacked and malicious codes are being injected to my pages making it blocked by browsers like Google Chrome..

You might have seen the message “Warning: Visiting this site may harm your computer! ..

If this message or similar warning messages are shown when you access your website,you are trapped.Some malewares affected your website and injected code into your pages…If you ingnore this problem your website will be banned by google and there will be absolutely no visitors for you in 1 week time after the attack.

I am not going deep into the different ways these kind of malewares can affect your blog.I will quickly explain what I did right now to kill the malware affected my wordpress blog .

Today evening when I tool my website,I found the warning message


warning.jpg


Note : Some malwares may even wont be detected by browsers even if the code is injected.So you cant just think that your website is clean of viruses even if you are not blocked by browsers

You can confirm your website using this online tool http://www.unmaskparasites.com/ .It will give you the detailed report of websites which are being linked from your site and whether they are malicious or not.

Steps I did to remove the malware

1.Installed this plugin http://wordpress.org/extend/plugins/exploit-scanner/

It can scan your wordpress blog files for a particular word or phrase you give.

2.Identify the name of the malware.You can either get it from the browsers warning window or from the website http://www.unmaskparasites.com/security-report/ as I have explained.

3.Search your blog using the plugin for the malware and identify the files in which the code is injected

The code will be something like

<iframe src=”some url here” width=1 height=1 style=”visibility:hidden;position:absolute”></iframe><iframe src=”some url here” width=1 height=1 style=”visibility:hidden;position:absolute”></iframe>

4.Remove this iframe from all the pages..


You are done….I hope so……Let me dig more on this threat and will definitely post if there exists more threat….

By the way I forgot to tell you how you can secure your wordpress blog from these kind of code injection threats…..

Here is a plugin for you to secure your wordpress blog

http://wordpress.org/extend/plugins/wp-security-scan/

No related posts.

Thanks for reading my blog. If you like what I write, why not subscribe to my feed?

If you are busy, I can send the latest post to your email. Just subscribe to my email updates.

 

Enter your email address:

Delivered by FeedBurner

Tags :  ,

Discussion

No comments for “Attention WebMaster’s & Bloggers–You might also be trapped”

Post a comment