You are here: Home / Archives for malware

Zamanta Attracts Malware

February 8, 2010 by tony · 5 Comments 

I like WordPress and use it on most of the websites I have, not just this Blog, but as a Content Management System on our rental site for our home at http://VillaRoquette.com. I use Google Webmaster Tools to try to keep my sites in order, one of the services they give is to tell you about any Malware or Phishing hacks that appear on your site – the disadvantage is they tell you after you are attacked and that your site is blocked by Google. but at least they tell you where the problem is and how to fix it and get re-established.

I have lost a couple of successful businesses from being hijacked and hacked on the Internet – I suppose this is some sort of reverse success as usually these evil scumbags only hack successful sites – but by keeping software up-to-date and using good passwords as well as monitoring the sites daily I seem to be holding back direct attacks on the sites.

However two weeks ago I seemed to have opened the door to a whole new problem – it is as if I saw this big wooden horse outside my home and decided that I must bring it in – I loaded a Plugin to WordPress called Zamanta – the idea is that this helps give relevant links and information, pictures etc to make the content more interesting. What it did do was insert a link which then had other code inserted and as flagged as Malware, getting an immediate ban from Google.

Thanks to Google they mailed me, told me the problem page and I could fix it in seconds, they then re-spidered my site and gave me a clean bill of health.

There is no doubt it was this Zamanta link which I put to software called Drupal – I am sure that neither Zamanta nor Drupal are the villains, but as Drupal is very popular, it looks as if hackers have corrupted the links, possibly via Wikipedia, for references that Zamanta uses. The page with this bad link on only had three lines in it and one link – so there is no doubt.

Filed under Personal, Techie Stuff · Tagged with , , ,

A lost Sunday in my cgi-bin

August 30, 2009 by tony · Leave a Comment 

 

- help -

Earlier this year I had a big problem as my hosting company was attacked by hackers from hell who hijacked thousands of websites and inserted “malware” into them – this has resulted in some of my sites still being listed as “dangerous” by Google.

I have had to search through thousands  of files and check pages and pages of code to find the tricks and traps which had been inserted.

Google have some tools to help me with this, but it is a game of “cat and mouse” and I am not a programmer or remotely expert in this sort of thing.

Amongst the debris I cleared out and the corrupted files I corrected, I have noticed that every site had a file “altered” in the cgi-bin on the 2nd of January this year – all the files are identical and it is a 6.3 megabyte file – to me it is unreadable and without it none of my sites, including www.twiku.com, will work – any help or ideas are welcome, I am looking for some diagnostic software or service which can pinpint the bad pages or problems on my sites and let me get the Google blacklist lifted.

Can anyone explain the reason why a person will do this sort of thing – the misery and expense is enormous.

 

Filed under Techie Stuff, fruk · Tagged with ,