Webpage hacked report – YellowPencil
-
I have been hacked this week by “hellomyhony.com” which blocked access to my desktop and redirected page visitors to their site.
With the help of the Pinnacle theme forum, I’ve removed the offending code and recovered my site.
BUT what has come out is that 20 people using the Pinnacle theme all have the plugin YellowPencil installed. It seems that this plugin is the culprit.
I can’t find any way report this to WordPress, but there are probably thousands of users who may be affected.
I don’t have the skill to look for the payload and determine whether YellowPencil is an innocent provider, but as a responsible site owner I’d like to report the suspicions.
-
They already released an update for pro users.
Anyone using the free version should access their phpmyadmin dashboard. Search for wp_options ==> edit the urls back to your own url.After this acces the wordpress admin dashboard, export all the CSS you have created, copy the css in the custom css section of your theme and publish.
After that deactivate the free version of Yellow Pencil. They will release an updated free version.
***UPDATE***
Issue patched and update available. READ THE INSTRUCTIONS !
https://yellowpencil.waspthemes.com/docs/important-security-update/
Thank you for this info. I don’t use that theme but I do use Yellow Pencil Pro. My page was hit for 2 days. The only change I could find was in the database options. I’ve gone an installed numerous security plugins and have done all the usual changes such as renaming database, path names and passwords. And it happened again. I just installed the yellow pencil update. Fingers are crossed. Are there any other files we should look at besides the database options that could have been changed?
@yugogardner
No problem ??
A change for everyone the get the pro version for free ??@mollycakes
No other changes needed to be made. You’ve done what needed to happen ??
- The topic ‘Webpage hacked report – YellowPencil’ is closed to new replies.
