[OWASP-Security101] Wordpress hacked issue

Rajesh Sharma rajesh at aaatechnologies.co.in
Thu Mar 17 12:24:56 UTC 2016


Hello All,

It is possible that they have used this script code to redirect as mentioned
below in the main page. Just don't jump to DNS hack yet.

<script> delayRedirect(' https://twitter.com/JustinTrudeau '); function
delayRedirect(url) { var Timeout = setTimeout("window.location='" + url +
"'",100); }</script>




Regds...R Sharma



-----Original Message-----
From: security101-bounces at lists.owasp.org
[mailto:security101-bounces at lists.owasp.org] On Behalf Of
security101-request at lists.owasp.org
Sent: Thursday, March 17, 2016 5:00 AM
To: security101 at lists.owasp.org
Subject: Security101 Digest, Vol 35, Issue 4

Send Security101 mailing list submissions to
	security101 at lists.owasp.org

To subscribe or unsubscribe via the World Wide Web, visit
	https://lists.owasp.org/mailman/listinfo/security101
or, via email, send a message with subject or body 'help' to
	security101-request at lists.owasp.org

You can reach the person managing the list at
	security101-owner at lists.owasp.org

When replying, please edit your Subject line so it is more specific than
"Re: Contents of Security101 digest..."


Today's Topics:

   1. Wordpress Hacked (Craig Schvaneveldt)
   2. Re: Wordpress Hacked (John Seixas)


----------------------------------------------------------------------

Message: 1
Date: Wed, 16 Mar 2016 21:24:34 -0600
From: Craig Schvaneveldt <swany74 at gmail.com>
To: security101 at lists.owasp.org
Subject: [OWASP-Security101] Wordpress Hacked
Message-ID: <927252FB-8D19-4DB1-9D74-3CCA71772699 at gmail.com>
Content-Type: text/plain; charset=utf-8

Hi,

i have a wordpress site that has somehow been hacked.  When I enter the web
address it gets redirected to another site that has pictures and play?s
music.

How can this be done by hackers.?

Thanks.

------------------------------

Message: 2
Date: Thu, 17 Mar 2016 05:40:21 -0500
From: John Seixas <seixas at solesourceinc.com>
To: Craig Schvaneveldt <swany74 at gmail.com>,
	security101 at lists.owasp.org
Subject: Re: [OWASP-Security101] Wordpress Hacked
Message-ID:
	<CADCKY_fwEHX3o2dBZWgRKkYYDzuUpTRVmKNvREmN6VpCAgkR0Q at mail.gmail.com>
Content-Type: text/plain; charset=UTF-8

When you enter the website name (the URL), your web browser sends a query to
a Domain Name Server (DNS) which gives you the IP address for the server
hosting your web site. It sounds more like the DNS service has been hacked
and the incorrect IP address is being given out. Contact your hosting
service (the company that owns the server your web site is on). They are in
a better position to determine what happened and to fix it.

_____________
John R. Seixas
seixas at solesourceinc.com

214-537-6929

On Wed, Mar 16, 2016 at 10:24 PM, Craig Schvaneveldt <swany74 at gmail.com>
wrote:

> Hi,
>
> i have a wordpress site that has somehow been hacked.  When I enter 
> the web address it gets redirected to another site that has pictures 
> and play?s music.
>
> How can this be done by hackers.?
>
> Thanks.
> _______________________________________________
> Security101 mailing list
> Security101 at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/security101
> List Run By OWASP
> List Admin: Michael.Coates at owasp.org
>


------------------------------

_______________________________________________
Security101 mailing list
Security101 at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/security101


End of Security101 Digest, Vol 35, Issue 4
******************************************



More information about the Security101 mailing list