Woopra.com Hacked? « Woopra Forums

Forum Hot Tags

analytics API approval bug Bugs chat client Code dashboard Desktop domain error Google help Installation IP Java Javascript Joomla live Login Mac Map notification not working Pending Approval plugin problem referrers search statistics stats subdomain tags time tracking Troubleshooting url visitor visitors website windows Woopra WordPress WordPress Plugin
Recent Blog Entries
- Interviews: Woopra’s Time to Share Our Story
  We recently shared reviews and highlights of Woopra, and a collecton of video reviews and tutotirals. Those are your words [...]
- Alpha Testing for the Next Woopra WordPress Plugin Upgrade
  Shane from The Rabbit Hole has been working on the next version of the Woopra WordPress Plugin and has announced [...]
- Woopra Video and Tutorials Highlights
  Recently, we shared with you a collection of reviews and highlights on Woopra written by members and fans. A lot [...]
- Maya Zankoul’s AMAZING Woopra Review!
  We've all seen a lot of stuff on the Internet over the years, and people often throw around the word [...]
- Woopra Reviews and Highlights
  2009 was an amazing year for Woopra. We opened up our beta access to over 90,000 sites. We came out [...]

Woopra Forums » Troubleshooting

[closed]

Woopra.com Hacked?

(7 posts)

Started 1 year ago by 34vcb834kg
Latest reply from John
This topic is closed
This topic is resolved

Tags:

Anonymous
Unregistered

My security software blocked an inframe from loading today that originates on the woopra.com website.

If you look at the top left hand of the index page, the following tries to load "<IFRAME>, text/x-php@http://prevedvsem123.cn/25/index.php"

Here is a screen shot of the the issue: http://i35.tinypic.com/24wej2h.jpg

I suggest you check your server security!

Posted 1 year ago #
Elie K.
King of blues

We are aware of this issue. We are solving it!

Sorry for the inconvenience.

Chief Eye Candy Officer

Posted 1 year ago #
jaysen
Member

Hi,

It appears I have been similarly hacked. It may actually be a layeredtech problem as I also use a layeredtech server. Please contact me at the email address I entered while registering for this account today.

Thanks,

JS

Posted 1 year ago #
roo
Member

Hey,

Started my computer an hour ago and found the same problem, I'm also a Layeredtech user. I found this thread through Google. Would appreciate any progress mentioned!

Posted 1 year ago #
eristoddle
Member

I have done some investigating of this issue which is also affecting my sites and I have a LayerTech server: http://www.stephanmiller.com/bugs-viruses-backups-and-prevedvsem123cn/

Posted 1 year ago #
jaysen
Member

I have started a ticket with Layeredtech, haven't heard back from them yet (weekend just getting over).

JS

Posted 1 year ago #
John P.
Chief Cat Herder

Guys,

As I mentioned on Stephan's blog, the situation is as follows:

- Woopra was not hacked. Our client DB and stuff are secure. Plus, we don't have any sort of really juicy data such as your server login details anyway.
- Woopra was indeed running WordPress 2.5 which had a vulnerability. Within an hour or so of WordPress getting compromised we updated and fixed it. All that happened was that a spammer put a link in our footer. This sucks, but it reminds us all that we need to routinely update our CMSs.
- Layered Tech doesn't even have the login details for client servers, so there is simply no way access could have been gained to self-managed servers via that route.

There may be some issues that are affecting others who are not running outdated versions of WordPress, but we can't really deal with them here. So, I'm closing this thread because we believe we fixed the Woopra error.

If anyone starts seeing new spam links pop up please let us know by re-opening a new message and we'll take another look.

John

Posted 1 year ago #