Is your Wordpress Installation Compromised? Al Gore’s is.
12. Nov 2007 | 34 Comments
Quite often I like to take a quick look at the serps for buy viagra, buy cialis, buy xanax & buy phentermine. To some of you this may seem quite strange, almost like I have a crazy drug addiction. But there’s a good reason why.
I’m sure these particular products ring a few bells, no doubt you’ve seen Akismet or Spam Karma wipe out comments promoting them. The reason people promote them is because there’s huge amount of profits involved. I’m not really worried about the profits though, I’m more worried about the techniques these spammers are using to promote their hosted pages to the top spots.
It’s impossible for someone to manipulate the serps like we see above with a brand new domain.
Lets take the Buy Xanax serps for instance, you’ll notice a few forums & a few .edu sites ranking up there. With anywhere up to 1,000 links pointing to that one page (the sources of which I’ll cover in a minute).
It’s all but impossible to buy a new domain & point this many links to it then expect it to rank. You’ll get slammed into the sandbox……fast. So instead, aged domains that carry weight are used instead. Google will somehow tolerate the mass amount of links with the same anchor text if the domain already has a significant amount of trust or authority.
Anyway, back to the original story. I noticed that many of these authority domains had backlinks from many high profile wordpress blogs.
Let’s for example look at Al Gore’s - Climate Crisis Blog, you can see that’s it’s linking to the edu page about xanax. Now let’s have a look at the source code:
You can see nicely concealed in a hidden div tag in the footer about 50 links (on every page) to other various drug related hosted pages.
Doing a bit more digging reveals that there are thousands of high profile blogs using Wordpress that are compromised too. Most of the domains are PR5+.
So I suggest that you take a close look at your Wordpress installation, especially the footer incase this has happened to you. I highly doubt that many of the people who have been hacked are aware that they are linking to potentially damaging websites.
Enjoy this post? Get the RSS FeedTags: Wordpress or Share This
|
|  |
34 Comments on "Is your Wordpress Installation Compromised? Al Gore’s is."
That’s a nasty old trick. I’ve spotted it in a few themes 
Call me naive, but I didn’t even know this was possible. Yikes! Thanks for the heads us. Just checked and my blog is clean, but I seldom look at my own source code, so now I’ll know to check it.
Thanks, Linda
great post!
why is it that you can learn more from what not to do that what to do sometimes?
how do you prevent from being hacked like that?
Insert Al Gore invented the internet joke here…
old news
I doubt many of your readers (except Linda, who should know better! ) ignore their code long enough to miss something like this.
serves him right for inventing the damn thing 
So had WordPress been patched against whatever hack they’re using?
Obviously, Mr. Gore did not spend enough time checking the security settings of his Wordpress blog. Not surprising since he didn’t spend enough time checking the facts for his movie.
Its unfortunate that PC World is at 710 Diggs and you are sitting at 9 Digs as the original author - or at least according to the post on their site. At least you got the first post with a link back.
I have one blog that gets hacked every single day, I have to keep overwriting the files to sort it out - My host is not able to sort it out to date. I think they have security holes. I’ve upgraded to the latest verion of WP. Not sure what to do next.
Try switching providers or witholding payment ’til they explain why it’s happening?
It’s been commented elsewhere (I won’t give the idiot a link since he didn’t do the same to you) that the site in question is still running wp 2.0.4 which is very much out of date. At least a year.
LoL looks like his footers been hacked again.
Im not gonna paste it all here. but theres the div tag again. if you wanna see for yourself check the source, now its pointing to howardowens dot com.
People who post comments on PC World know nothing about SEO. Neither know how to protect sites. All they can do is talk but once it come to real protection - they are useless. Bottomeaters.
Got bit by this one myself, but its actually not the theme files that are compromised; its the index.php file in the main directory of your Wordpress install thats comprised. That may be more of a server security issue than a Wordpress issue.
check not only for div tags
but also for links which merges with background, which are embedded in noscript or have invisible images links.
wow, that bites!
I really suffered a lot. Couple of my high ranking blogs was hacked with spammy footer links. When i notice the links, the first portion of the urls showing some legitimate sites but this links going to 404 pages of the sites, and the links with irrelevant anchor text. I think the main idea of hacking is to disturb the trust of the site and SERPs of the blog. I am using paid verion of semiologic them, but i still couldn’t find how to protect my sites.
Here is a nice security scan plugin for Wordpress:
Add a Comment
Categories
- Affiliate Marketing
- Affiliate Marketing News
- Affiliate Networks
- Copywriting
- Earners Blog News
- Earnosphere
- Email Marketing
- General Musings
- Guides
- Keyword Research
- Link Building
- Marketing Tools
- Monetization
- Outside the Box
- PPC
- Productivity
- Reviews
- Search Engine Optimisation
- Social Media Optimisation
- Tips & Tricks
- Top Posts
- Traffic Generation
- Wealth Creation
- Web Development
- Wordpress
Affiliate Tools
Service Reviews
Guides
External Links to this Post | Trackback Link
- SEO 2.0 | Hey You! Your Blog Has Been Hacked!
- Al Gore’s Wordpress Blog Hacked Multiple Times « Internet Marketing Blog by Noon-an-Night
- BlogSecurity » Blog Archive » More WordPress targets for spam
- Friday Long Island Iced Tea Time - 11/16/07
- Don’t Get Hacked Like Al Gore - Keep An Eye On WordPress
- Scott Rosenberg’s Wordyard » Blog Archive » Wordpress footer follies
- NewsFilter » ????? “??????” ?? theme ??? ??????????????;
- Reading list, Virtual online worlds and MMOGs
- Wordpress Blog Hacked | BPWrap
- How Wordpress Blogs Are Hacked | BPWrap
- Wordpress footer template hacked badly… : Alec Tang - A Developer’s Random Blog
- links for 2008-05-20 — contentious.com
- LucroNet, LLC. » Blog Archive » 2.3.1
Hey Rich, thanks for the comment. I’m not too worried about the story being Dugg, I’m more annoyed that the story has now gone mainstream & these bigger blogs are getting the credit for plagiarism (with some “expert opinions” thrown in).