This article is not really a rant but rather an alert for any that is currently Googling this. I have found on a few websites that I hosted on an older system had random PHP script inserted into the start of the index.php file.
The code below is what is being inserted into index.php files. So far I have not seen it attack any other pages.
However with that said, lets see what this PHP code is doing and hopefully what you can do about it.
As you can see this is clearly just a encoded PHP script – much like the same I do on Can you work it out. So if we just decode it, we now get what the server is actually executing. Continue reading →
Another day, another company has failed in trying to make me buy their product and I ain’t suprised no more. It was actually pretty clever. What happened is that they link to your WordPress installation and this causes a traceback to happen.
Now, typically linking to your is a good thing but in this case, the company trying to sell the product is now displaying their link within my WordPress Admin CP.
Now, being the type of person I am, I clicked on the link and it took me to a “YOUR COMPUTER HAS VIRUSES” page and not even for a second did I know it was true. On that page, it did an “online scan” and it was showing my C: Drive and D: Drive and scaning the DDL files within my “Windows” folder. Continue reading →