‘Hacked’ post, code was inserted

Haven’t had a new insertion in the last week.

Haven’t had a new insertion in the last week.

Last time for me it was over a month & 30 posts apart between the insertions.

It will be interesting to see if anyone gets the same problem with WordPress 2.8.

I still have no idea how it happened. I am wondering if someone hacked my password both times, even though I changed the password between insertions. I’ll hold my hands up and say it’s not the strongest password that I could make up, however it isn’t exactly simple either.

Guys,

I had no injection of code anymore since:

renaming the names of the database tables
changing admin password

I am using 2 plugins to monitor this:
WordPress Exploit Scanner
WP Security Scan

Some injections were deleted with: Delete-Revision (cause the code was not only in the post but also on the automatic saves)

I’ve had exactly this as well. It took me a while to find this thread but anyway. I was using WP 2.7.1 also when it happened to me. The thing was I didn’t realise what was going on for a very long time. I was getting reports that the WP page was blocked for malicious content, but I didn’t realise the page was just trying to pull from an external ip address until i checked the page source. My site is hosted, and I wrongly assumed that 74.222.134.170 was the ip address of the hosted server. I’d been hit by a major bit of hacking on my website a few months ago, and thought that maybe the warning message was from an old index. Anyway… I can safely say that changing the wp_ prefix won’t help prevent this as mine had already been changed.

Thanks for the tip about the 2 security plugins, I’ve just installed them both.

Google https://74.222.134.170/stats.php?id=2 and it looks like a lot of sites have been hit by this.