- 10,276
If you are using the Social Media Widget plugin (social-media-widget), make sure to remove it immediately from your website.
Urgent Warning
- Thread starter CHUMPS FROM OXFORD
- Start date
Ladeemelie
Expert
- 52
I'd like to just ask why but the word limit and all
- Thread starter
- #3
- 10,276
Malicious code was added 12 days ago.
Heck, I need to find out if I have it.
Heck, I need to find out if I have it.
- 171
Thanks for the heads-up, Chumps. It looks like it is fixed?
WordPress Plugin Social Media Widget Hiding Spam – Remove it now | Sucuri Blog
WordPress Plugin Social Media Widget Hiding Spam – Remove it now | Sucuri Blog
- 2,024
That's one of the things I'm always afraid of with the wordpress repository. There isn't much review of the code for malicious or backdoor code being added, and people just press update all the time assuming the code doesn't have some sort of nastyness in it.
- 14,809
The less plugins you have the better. That doesn't mean it's fool proof but limits your exposure. And as always, make sure your entire site is backed up.
- 171
This week, there has been a 'brute force' attack on wordpress websites by a bot, trying to target & crack wordpress sites with weak passwords. I heard about it through my host, and it's been causing problems with their servers.
So, if you have a weak password and a wordpress blog or site, you might want to look into it.
So, if you have a weak password and a wordpress blog or site, you might want to look into it.
- 14,809
Here's a "must read" if you have a WP site regarding security:
https://www.box.com/s/vre2fakxe5c8cu0qz35i
And Matt Mullenweg has a short blog post about it today:
http://ma.tt/2013/04/passwords-and-brute-force/
https://www.box.com/s/vre2fakxe5c8cu0qz35i
And Matt Mullenweg has a short blog post about it today:
http://ma.tt/2013/04/passwords-and-brute-force/
Last edited:
- Thread starter
- #9
- 10,276
Found it by accident on Google +. Always expert WP advice there.
