I am writing this to add to the information pool. 3 Jan 10, I upgraded my WP to 2.9, tried to make a post but couldn’t. When I rebooted my computer WP seemed to work fine.
(At sometime during this timeline I also upgraded to WP 2.9.1.)
4 Jan 10 I published a post. 5 Jan 10 I tweeted my post and was notified by one of my twitter friends as follows:
Avast ( anti-virus software) tells me your page contains a Trojan Horse – JS:Illredir-B [Trj] – check for malicious code injected by hacker
I found the page:
https://www.zyenweb.com/2009/12/30/trojan-attack-jsillredir-b-trj/
used the script and cleaned my Public html directory of the code.
And in addition I have been using Filezilla for my ftp. I have changed my password and no longer use the quick connect feature.
At this point I am more curious about how I can protect my site from invasions like this in the future.
How is it that people seem to think that the ftp is the way this is spread? Any other hints at securing my blog site?
Thanks!
Janine
