Interesting WordPress Hack

They attack the RSS feed rather than the actual post (RSS Spam Cometh? – GigaOM details how the spammers have moved to RSS since that’s what people are using), tagging the ends of posts with tons of porn links. They do this because they have the MYSQL password! And you thought your passwords where safe, didn’t you? One of the files WordPress reads in order to manage your blog has your password in a MD5 hash format(#5367 (WordPress cookie authentication vulnerability) – WordPress Trac – Trac), which the attacker picks out and plugs into one of his spam generating machines and voila! Spammer gets paid.

Right now they’re just targeting the “Blogroll” category in WordPress, so I superimposed a subsequent “Blog Roll” category to replace it. <:-) >:-) <:-) >:-)

Leave a Reply