Friday, March 30, 2012

brazilian sites embedding malware into wordpress sites

i just caught and some others from the domain .br which asks the viewer to run a java file

you have to manually to the file manager and remove the line from the wordpress theme .
i dont know how they are doing it or if wordpress is vunreable ?


  1. You may want to add thus to your list of people who are doing that; it prompts visitors to download and run Oracle's Java suite, but a bogus signature for the file installation come up. This is pretty dangerous.

    Found and removed from header.php in WordPress theme:

    1. Thanks for your additional tips Jimmy