Usually when people think of sites getting hacked they get images of major mayhem where site owners no longer have access and things can be so bad that every shred of information is corrupted or lost. Well this post is to warn you of another form of hacking, hacking by stealth where individual posts have links inserted that you do not know about.
One of my regular readers, Donace who has an interesting post on how to get your backlinks indexed quickly, let me know yesterday that my sexual aids blog had ‘broken or some sneaky links have been slipped in‘. Upon checking it out I found he was absolutely right and not only the particular post he pointed me to as every single post had two links to a pharmaceutical site inserted into it.
It took me all morning to go through each post to remove the links. Some were more difficult than others as they were messing up my amazon links and had to extracted carefully so as to not damage the amazon links. The wankers even inserted two links into my blogroll! Sure it could have been a lot worse, they could have wiped the blog, although I do have backups, and caused other damage, but even so it’s an awful feeling to have someone invade your personal property like that.
The only way they could have done it was by getting access to my dashboard. Once I removed all those links I changed my passwords. I also remembered a post Mitch did about securing your blog where he mentioned the Limit Login Attempts plugin. I should have installed then and there but I didn’t because I was sure no one would crack my password. How wrong was I? Now if anyone has more than three attempts at a password they get locked out for twenty minutes. After two lockouts they get locked out for 24 hours. I get notified after the first lockout so that I can see what is going on.
While writing this post I have attempts from the same IP address on two of my other blogs. Who knows how long this has been going on for, at least I know now that my blogs are more secure than they have been in the past.
I urge everyone to check their posts to see whether or not their blog has been compromised. Let’s face it, how often do you check your posts to see if any links have been added? Perhaps this hacking by stealth is the latest method used by these despicable swines to improve their ranking in the search engines. It would probably be a good idea to tell others you know about this so they can be aware of the situation.
I usually wait awhile before doing update posts so the original post gets to be ... Read more
Filed under: Wordpress Plugins
Like this post? Subscribe to my RSS feed and get loads more!