Comments on: Unobfuscating an Attack http://alanp.ca/blog/2010/07/13/unobfuscating-an-attack/ The world, according to alanp Mon, 31 Oct 2011 03:23:00 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: Xavier Schott http://alanp.ca/blog/2010/07/13/unobfuscating-an-attack/comment-page-1/#comment-2226 Xavier Schott Mon, 31 Oct 2011 03:23:00 +0000 http://alanp.ca/blog/?p=145#comment-2226 There are immediate actions you must take when you isolate an attack. The file which led to the infection likely multiplied itself in a few locations. As described in this article: http://thegothicparty.com/dev/article/server-side-virus-rat/ you should take serious steps in not only identifying other potential backdoors or RAT, but also tighten the security on your server, starting with ensuring that absolutely no directory is writable, and your WordPress is up-to-date. There are known plug-in security holes, and your first line of response is robust, recent software. There are immediate actions you must take when you isolate an attack. The file which led to the infection likely multiplied itself in a few locations.

As described in this article:
http://thegothicparty.com/dev/article/server-side-virus-rat/

you should take serious steps in not only identifying other potential backdoors or RAT, but also tighten the security on your server, starting with ensuring that absolutely no directory is writable, and your WordPress is up-to-date. There are known plug-in security holes, and your first line of response is robust, recent software.

]]> By: Erin http://alanp.ca/blog/2010/07/13/unobfuscating-an-attack/comment-page-1/#comment-2159 Erin Tue, 17 May 2011 14:52:00 +0000 http://alanp.ca/blog/?p=145#comment-2159  This just happened to my wordpress account. I don't know much about hacks or viruses. I deleted the file (it overtook my style.css file). Is the problem solved now or should I take further action? Thanks!  This just happened to my wordpress account. I don’t know much about hacks or viruses. I deleted the file (it overtook my style.css file). Is the problem solved now or should I take further action? Thanks!

]]> By: wp-popular.com » Blog Archive » Unobfuscating an Attack « alanp.ca : blog http://alanp.ca/blog/2010/07/13/unobfuscating-an-attack/comment-page-1/#comment-2124 wp-popular.com » Blog Archive » Unobfuscating an Attack « alanp.ca : blog Sun, 25 Jul 2010 08:51:35 +0000 http://alanp.ca/blog/?p=145#comment-2124 [...] post: Unobfuscating an Attack « alanp.ca : blog Tags: code, hack, [...] [...] post: Unobfuscating an Attack « alanp.ca : blog Tags: code, hack, [...]

]]>