It Was Bound To Happen.. Hacked!

It’s funny, I was reading Tyler Cruz’s blog a few weeks ago, and he was talking about how his network got hacked. I’ve always been careful with my blogs, but his post prompted me to backup my theme files. (I do weekly database backups, but if my theme got messed up, that’d suck!)

Last week, one of my writers said he was seeing an ad for Canadian Viagra when trying to access his site. I looked at it, and everything looked fine to me, so I figured he must have some spyware on his PC. He never said anything after that, so I left it at that. Then last night, my site editor called me in a panic, with the same thing happening on a different site of ours! Again, I couldn’t replicate the issue, but he sent me a screen shot as proof.

This morning, one of our readers e-mailed me, telling me that it’s been plaguing him for almost 2 weeks now, and that Bing has a cached copy of the Viagra page under our domain name!!

So I checked it out, and this time I was able to get it to happen for me. 🙁

It took me about 7 hours, but I finally found the culprit. Somehow, our theme was edited by a clever hacker a few weeks ago, and he hid some code in there.. It didn’t run 100% of the time, so it was hard for us to see it in action. It took some creative detective work on my part to figure out what happened, and I’m not going to disclose the details on here. The last thing we need are some copycats wreaking havoc across the blogosphere.

A day wasted, but at least we’re up and running again!


Enjoyed this post?
Subscribe to Zander Chance via RSS Feed or E-mail and receive daily news updates!

Submit to Digg  Stumble This Story  Share on Twitter  Post on Facebook  Post on MySpace  Add to del.icio.us  Submit to Reddit  Fave on Technorati

5 Responses to “It Was Bound To Happen.. Hacked!”

  1. web design says:

    Glad the issue is fix now but its important from now on to keep an eye on security issue. I read from another blog just two days back her blog was hacked too.

    She mention briefly that the loophole is coming from her hosting and they finally fixed it.

    • Zander says:

      Yeah, from what I read, the Phara Hack ended up affecting over 200K blogs worldwide! That’s insane, and what’s even more concerning is that there’s still no definitive answer on how it happened. Network Solutions got some heat because they had a massive breach, but we’re not on NetSol and we were still affected, as were MANY others.

  2. Zander says:

    I can’t believe that it’s been 15 days, and I’m STILL dealing with the aftermath of this! 🙁

    You’ve got to admire the skill of this hack – But I still want to strangle these fuckers. You can’t imagine how much time this has cost me!

  3. Bruce says:

    Glad the issue is fix now but its important from now on to keep an eye on security issue. I read from another blog just two days back her blog was hacked too.

    She mention briefly that the loophole is coming from her hosting and they finally fixed it.

  4. Gadget Guy says:

    Good job finding the code and sorry for the pain its caused you.

Leave a Reply