One malware was widespread through to could spread malware and spam to WordPress blog with used software blogging WordPress old version. It was submitted by the founder developer WordPress, Matt Mullenweg.
According to Mullenweg, the worm is quite difficult to detect, because it registered as a user, then use a security bug that had improved last year to facilitate the evacuation of the code to be executed through the permalink structure.
Worm which claimed to be the user also masquerading as an admin, and then use JavaScript to hide himself when other users view the blog page. After the user visiting the pseudonym blog, the worm will clean himself, then went stealthily now himself hid spam and malware to old posting user.
WordPress weakness was found on 11 August, and WordPress suggested user to immediately to upgrade to version 2.8.4. However, many users have not upgraded and according to Mullenweg, the worm progress increasing every hour. The worm does not infect WordPress version 2.8.4, and only infects the WordPress blog owned by the user. While WordPress.com host was not infected this worm. To upgrade blog, user WordPress could direct to this link.
Interesting Stuff
Related Posts:
Experience:1 Comments
thank! for this news it’s a good infomation !