Aurgasm hacked
  • mlml
    Fucking bastards.



    http://aurgasm.us/
  • squashedsquashed
    update your wordpress people.
  • loudersoftloudersoft
    wow.  just...wow.  awful.



    if you're not upgraded to 2.3.3 you're vulnerable so quit ignoring that warning when you login to your admin dashboard telling you to upgrade.   
  • SwanSwan
    damn, they fucked them up.
  • SongbyToadSongbyToad
    Ouch, that's painful to look at.  Hope it's quick to sort.
  • mauramaura
    yeah and another wordpress-related public service announcement -- check your server logs to make sure that no one's exploited an old-version-of-akismet vulnerability to open up a new directory on your site and hawk ringtones through it. this happened to my personal site a few months back and it was really, really upsetting.
  • mike green lightsmike green lights
    "WordPress 2.3.3 is an urgent security release. If you have registration enabled a flaw was found in the XML-RPC implementation such that a specially crafted request would allow a user to edit posts of other users on that blog. In addition to fixing this security flaw, 2.3.3 fixes a few minor bugs. If you are interested only in the security fix, download the fixed version of xmlrpc.php and copy it over your existing xmlrpc.php. Otherwise, you can get the entire release here."



    http://wordpress.org/development/2008/02/wordpress-233/
  • squashedsquashed
    After you clean up your server.



    A quick polite write to Google is actually working. (make sure your site is clean)

    They responded in 2 days and the bot is back in a week.



    Of course your google footprint has shrink considerably. about 60-70% previous size, but minimal traffic effect.
  • mike green lightsmike green lights
    wordpress 2.5 RC1 is available to preview now.



    Cleaner, faster, simpler so they say: It looks nice.
  • chengychengy
    I just hate upgrading though. It does take all of 10 minutes but my site begins having server errors/problems for the rest of the day.
  • paul.irishpaul.irish
    ml you spotted this very quickly. if only had i come here that night. thanks!



    the exploit wasnt wordpress, afaict... it was actually the big dreamhost password leak from months ago. so let's blame them instead of my negligence of updating wordpress. :)



    but yes.. there are security concerns with all old versions. you should be running 2.3.3 or 2.5RC1 now.
  • mlml
    My comment wasn't nearly as useful as some of the others, though.



    Why am I not surprised to hear it had something to do with Dreamhost.
  • travistravis
    ew the admin of wordpress 2.5 is so ugly i want to barf all over the place.
  • travistravis
    and that's not saying much because the admin is already pretty ugly. but somehow it is even uglier.
  • chengychengy
    It feels like 2.5 is coming out so quickly.  I absolutely hate upgrading my site, I usually get Apache server errors during the day. I wouldn't mind if they just kept it the way it is and not change things for the sake of change.
  • travistravis
    two quickly? it's been what, six months? just be thankful it's not like the olden days when they had a new release every four or five weeks. they now only do 3 updates per year which is much more manageable.
  • Matt PicassoMatt Picasso
    Picasso got hacked. Luckily it also got fixed.



    Guess I need to upgrade?
  • Taylor musicforantsTaylor musicforants
    I got hacked also by the merry christmas dudes.  My RSS Feed is still messed up from all the blank lines that the hackers left.  I think I might need to do a clean reinstall...
  • squashedsquashed
    It takes about 4-6 weeks for google back to previous google rate.  I figure if other blogs help out after a blog re-enters google. It'll go faster.



    (I you need link up just put your blog name down. make sure you are back in google's list first tho')
  • uwmryanuwmryan
    So, the header of my page was hacked and replaced with thousands of links.  Anybody know/care to help me restore my old one and code?



    muzzleofbees.com
  • donewaitingdonewaiting
    i forgot to renew my domain today.



    rookie mistake! but maybe you'd like to buy an apartment instead as i resolve this.
  • chengychengy
    Posted by: travistwo quickly? it's been what, six months? just be thankful it's not like the olden days when they had a new release every four or five weeks. they now only do 3 updates per year which is much more manageable.

     Well since I updated to 2.3 we've seen updates between 1-2 months due to "urgent security flaws". Not a fan of those.

  • travistravis
    well those aren't upgrades but rather bug and security fixes. you can usually just upload one or two files to fix saving time/energy.




    2.5 out!!
  • travistravis
    ok, so maybe the new admin isn't barftastic. kinda liking some aspects of it. i wish it was a little better organized and didn't have to jump through hoops to get to some places but yeah... not too bad.
  • Matt PicassoMatt Picasso
    Anyone know how to fix a hacked RSS feed?



    :(:(:(
  • Taylor musicforantsTaylor musicforants
    i just had to fix my hacked RSS feed, basically went through my wp-content, root, and includes folders and deleted any blank lines after the php>.  time consuming, but it worked...



    *edit - just checked your feed and it looks like it's working, though i couldn't find a link to it on the front page.
Add a Comment

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Apply for Membership

Categories