Friday, March 30, 2012

brazilian sites embedding malware into wordpress sites

i just caught http://3ramos.com.br/js/ and some others from the domain .br which asks the viewer to run a java file

you have to manually to the file manager and remove the line from the wordpress theme .
i dont know how they are doing it or if wordpress is vunreable ?

2 comments:

  1. You may want to add thus to your list of people who are doing that; it prompts visitors to download and run Oracle's Java suite, but a bogus signature for the file installation come up. This is pretty dangerous.

    Found and removed from header.php in WordPress theme: http://ninjutsu.ws/js/

    ReplyDelete
    Replies
    1. Thanks for your additional tips Jimmy

      Delete