Malware Waring – Uber Menu

I’m having a similar problem. Yesterday, it notified me that my SEO plug in was malware ( installed over a year) and today I have a list of almost every page on my site as having malware.

I’m beginning to wonder if this is n’t a poly to get people to upgrade from free to premium.

It must have something to do with the last update … maybe they will fix it in the next one, if not it makes the plugin kind of useless.

Can you tell me exactly what it flags as being wrong? What I suspect is that you are seeing alerts because google suddenly decided that many links that were shortened (kike bit.ly, etc) could contain malware. Interestingly enough, googles own shortner service was not affected. ??

Here’s an article about it.

https://www.ghacks.net/2014/10/25/google-blocks-bit-ly-chrome-and-firefox-affected/

I have alerted the dev team to this, but google has already fixed the issue. I can use them without seeing the huge warning I got earlier today. Many times, in themes and plugins, authors use shortners like that in their code. I think delicious was one of the ones affected too. Likely you will not get warnings about those files now, but let me know if you do so I can escalate.

tim

Hi

Just seen this – I had this problem with Uber menu yesterday – no problem, do not panic!

Wordfence is working now with Google safe browsing and google (for me) had flagged up a couple of links which were in the original uber menu files from 2011!! so replacing the files was a no no – just deleted the links leaving “” in th ecode. They were links to the help files, so harmless, but must have fallen to malwear in the past few years and so linking to them would put your site at risk in the google ranking – hence being picked up now, with wordfence working with google.

So, basically – all good, thanks to Wordfence (I have the free version, and do not think they are touting for work. In fact, I am a paid up user of Succuri – and they did not pick this up!!

Awesome!

tim

Hi guys,

Just to be clear, there is no malware or links to malware, nor has there ever been, in UberMenu. The bit.ly links that were being flagged were just links to the Knowledgebase and Twitter, but Google flagged all bit.ly links as suspicious, even the innocuous ones.

No need for concern at all, but in any event, the current version of UberMenu does not have any bit.ly links anyway.

More info:

https://www.ghacks.net/2014/10/25/google-blocks-bit-ly-chrome-and-firefox-affected/

https://blog.sucuri.net/2014/10/bit-ly-blacklisted-by-google-safe-browsing.html

Google changed things up so that they shouldn’t be flagged as an issue anymore, anyway.

Hope that helps ??

Chris

P.S. Just FYI, note that the file listed in the original topic here is definitely not the latest version of UberMenu – that’s UberMenu 2, while the current version is 3.1.0.1

Thanks for weighing in Chris. I’ve had several other people ask about this and have made sure to let them know you have already addressed the issue and they should probably update.

tim

Thanks Chris and everyone that responded.
I feel better now ??

But for some reason i didn’t get notified that ubermenu had and update?
So I signed up again for email subscription, Chris is that they correct way to be notified of updates?

Also, it looks like ubermenu 3 is a major change … I have a lot of customized css. I studied the change/migration documentation but could you kindly confirm if I understand correctly that one of the major changes is changing tag selectors from ID to Classes? Is there anything else I need to be aware of that might cause problems? (Of course I know to backup before doing anything lol!)

Thanks!
Laura