Welcome to WebmasterWorld Guest from 54.146.221.231

Forum Moderators: rogerd & travelin cat

Message Too Old, No Replies

WP plug-ins with malicious/trojan backends

WordPress users take note...

     
2:32 am on Jun 23, 2011 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member tangor is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Nov 29, 2005
posts:6137
votes: 279


The plugins affected include AddThis, WPtouch, and W3 Total Cache. Users who have updated any of those titles in the past 48 hours should uninstall them and update to a version currently hosted on the WordPress.org website. Indepented WordPress developer Adam Harley has technical details of the three maliciously modified plugins here.

[theregister.co.uk...]
The "here" above leads to Adam Hartley: [adamharley.co.uk...]
12:21 am on June 24, 2011 (gmt 0)

Administrator

WebmasterWorld Administrator rogerd is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Aug 2, 2000
posts: 9685
votes: 0


Hmmm, that looks nasty. Better check my W3TC. Thanks, Tangor.
9:31 am on June 24, 2011 (gmt 0)

New User

joined:June 24, 2011
posts:21
votes: 0


Luckily I keep the Wordpress blog within my Google Reader, glad I took a look before heading off and doing the planned maintenance!
10:52 am on June 24, 2011 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member lorax is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Mar 31, 2002
posts:7575
votes: 0


Good find and thanks for the heads up.

It appears that breach only applies to users of WordPress.org and not independent installs.
4:03 pm on June 24, 2011 (gmt 0)

Senior Member

WebmasterWorld Senior Member rocknbil is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Nov 28, 2004
posts:7999
votes: 0


It applies to the three plugins they mentioned as well.
4:36 pm on June 24, 2011 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member lorax is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Mar 31, 2002
posts:7575
votes: 0


Add This: 2.1.3
W3 Total Cache 0.9.2.2 (after 5:41am 21/06)
WPtouch 1.9.28
3:02 am on June 25, 2011 (gmt 0)

New User

joined:June 21, 2011
posts: 27
votes: 0


I'm lucky I haven't updated my W3 Total Cache. Thank you for sharing!
11:39 am on June 25, 2011 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member lorax is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Mar 31, 2002
posts:7575
votes: 0


Spent several hours change Salts, updating plugins, changing db passwords, and then changing user pwds - or at least asking my clients to change them. A long day.