“Hacked by Theghost” message

  • got up this morning to find that my wordpress 2.3.2 site had been hacked. 3 blog postings were replaced by blank messages with the title “Hacked by Theghost”. when i go to the site i see all my directories – not my home page – and so does the rest of the world. not very secure.
    do you think WP 2.3.2 has some security issues or does it sound like a host problem? the .htaccess file was compromised as well.

Viewing 3 replies - 1 through 3 (of 3 total)

  • https://www.mattcutts.com/blog/three-tips-to-protect-your-wordpress-installation/

    do you think WP 2.3.2 has some security issues or does it sound like a host problem? the .htaccess file was compromised as well.

    there’s really no telling without having more information.

    what were the permissions of your files and directories, for instance. That you say your .htaccess was compromised leads me to think that you were using insecure permissions, aka 666, for at least some of your files, and undoubtedly your .htaccess. .htaccess files are very rarely compromised unless the permissions are wide open.

    As far as forensics go, I recommend letting your host know, and doing an audit of your server logs.

    Beyond that, you will want to change all your passwords, and follow all the other “after you’ve been hacked” suggestions people propose — few of them are bad advice.

    I went to mattcutts.com. I didn’t see any single useful piece of information. This topic is often talked about. I have mentioned some tips several times. You may probably want to search forums for more tips.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘“Hacked by Theghost” message’ is closed to new replies.