Arhiva pentru tag-ul » security «
In articolul precedent am publicat un tutorial de instalare WordPress in care am introdus si elemente de securitate pentru viitorul blog personal – modificarea prefixului tabelelor bazei de date wordpress si crearea unui nou username si a unei parole puternice. Daca ati urmat pasii indicati, atunci ar trebui sa aveti in acest moment un blog destul de protejat de hackeri dar gol. Daca blogul a fost instalat mai demult, va recomand sa faceti acesti pasi inainte de a aplica alte modificari pe care le voi expune in acest articol.
Odata cu instalarea pluginurilor sau a temelor, blogul dumneavoastra va deveni tot mai vulnerabil, de aceea este bine sa aveti grija cu actiunile pe care le veti face pe viitor asupra blogului. Securitatea Wordpress nu este data de cel mai sigur algoritm / plugin ci dimpotriva de cel mai slab. Degeaba v-ati construit o fortareata, cu porti ferecate si turnuri de paza daca geamul de la parter este uitat deschis.
I will post this article in English because it is of international interest, and everyone should be aware of the following security issues.
Starting last week, several Romanian blogs were hacked and infected with trojans or scripts. As a web design company, the security of our websites is critical, so at first sign of a virus we close down all our projects and solve first the vulnerabilities and security flaws.
Last week one of our computers was infected with Trojan-Dropper.Win32.HDrop.aa after browsing some blog posts. Since we use a feed daemon, we couldn’t tell that time, which one of more than 400 blogs we are following was the culprit.
Until today we could identify two blogs with different infections, none of them with the virus who infected our computer. We are still looking. So, what we discovered so far:
- http://skykery.info – infected with Trojan.JS.Agent.awm
- http://www.grimcris.com – malicious script that tries to execute something from http://bluejakin.ru
Both infections were blocked by Kaspersky Antivirus. We cannot access the first blog, while on the second one only the script is blocked. Both links to these blogs were removed from this post to prevent accidental infection.
