Hacker Message

Are you running WordPress 3.1?

Yes and all plugins are up to date. It looks like a “click here and you’re hacked” scam, but I’m still jumpy from last time. I do have backups as well.

You could try reporting the link to https://bit.ly/a/report_spam

Have you spoken to your hosts? Although they may not be WP experts, I’m quite sure that they will be very unhappy about this kind of implied threat. This is not how white-hat security/hacking works.

The site at wasserkocheredelstahl.com, is advertising wordpress version 2.9.1. (if that is relevant in any way)

The url under that shortened link “culturegambling.com”, is also running wordpress 2.9.1. and presents some interesting script in the source.

Chances are, the site has already been compromised for the purpose of placing your files in an environment that is not in the immediate possession of the person doing the hacking… possibly as bait for a different exploit.

That’s just an unqualified guess of course.

It would certainly irritate me to the point of pursuing it as far as possible.

I did call them and they told me there is little they can do and didn’t see any apparent hack. Sadly, these are the best hosts I’ve found so far, but they are starting to irk me. They suggested the plusing of WP Security, which I already have. This is the second time dealing with possible hacks that this company doesn’t take it seriously.

I didn’t think that was how any hacker works. If I was said hacker, I’d leave some code behind. I really don’t know what a white-hat hacker is but it sounds like someone who just sees if they can hack without messing anything up?

https://www.whoishostingthis.com/culturegambling.com

This site is not on the same server as GypsyNightshade’s. I’ve just realised – I’ve worked on her site (Gypsy – it’s Mel from quirm.net) and it’s pretty well tied down in terms of securing WP. Nothing running that I’d class as even close to a security risk and a shed load of scanner/exploit plugins (from reputable devs, IIRC) installed. If the site was compromised, my guess is that it would be via the server.

But I’d guess it’s either pure scare tactics or a baiting attempt – either of which deserve some attention from a very large clue-by-four.

I really don’t know what a white-hat hacker is

A whitehat hacker attempts to break/test sites & platforms with the express intention of notifying the developers of any potential security holes in their applications. Such a hacker would not approach an individual site owner but would contact WP’s core devs asap.

It’s a scammer.

Download your database and login datas: Link (nonfunctional)
I will delete this file after you download the file. This is for YOUR security.

Content Locked
You are ONE step away from unlocking the content on this page!
To access this content, you must complete an offer.

Click one of the links below to access an offer!

* Take The IQ Challenge Now!
* Paying Too Much for Auto Insurance?
* Add Color & Themes To Your Facebook Page

Hiya Mel! Still love the site!! Thank you, that gives me such a relief. I haven’t installed anything sketchy and keep the plugins up to date. They succeeded in freaking me out, but not enough to do something stupid. Hope you all have a fabulous day!

got the same thing this morning — nothing more than spam. but i have to admit it did make me hesitate for a second. so i checked our server and everything was fine. ??