Compromised WordPress Blogs Poison Google Image Searches

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

You might want to read this if you're running Wordpress:

  "I found 4,358 self-hosted WordPress blogs that contained many
   (usually more than 100) doorway pages that redirected visitors coming
   from Google Image search to fake AV sites. /
John Bokma                                                               j3b

Blog:        Perl Consultancy:
Perl for books:

Re: Compromised WordPress Blogs Poison Google Image Searches

On Tue, 09 Aug 2011 19:25:57 -0500, John Bokma wrote in

Quoted text here. Click to load it /
Malicious hackers have pounced on a zero-day vulnerability in a widely
used image-resizing utility that ships with themes for the popular
WordPress blogging platform.

The timthumb utility, used to handle cropping, zooming and resizing web
images, is used by millions of blogs running certain themes and because
it writes files into a directory during the image-resizing process, it
can be used to launch web attacks.
The fix? /

None of us is as good as all of us.

Site Timeline