SEO Egghead Blog gets hit with spam

Posted by DK
November 2, 2007

Jaimie Sirovich of SEO Egghead has reported that his blog was attacked by spam is claiming that it is due to an an HTML insertion vulnerability which affects WP 2.3 and the latest version 2.3.1. Unfortunately, he has not provided any further details, so we cannot look into this further.

When we do a Google search for the Ads he mentioned we only get his blog come back:

Try1 : http://www.google.co.uk/search?
q=intext:adshelper.com&hl=en&start=0&sa=N
Try 2: http://www.google.co.uk/search?hl=en&
q=intext%3Awww.my-movie-download.com&btnG=Search&meta=

Only his blog shows up here, however, he has mentioned that other blogs are affected?

If anyone has more details on this please let us know so we can investigate further but at the moment this looks like an isolated incident to me.

Advisories, Alerts, WordPress

Random Posts

If you enjoyed this post, please leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

Comments
Pingback by BlogSecurity » Blog Archive » New breed of comment spam on November 7, 2007 @ 6:27 pm

[...] was only a few days ago that BlogSecurity released a post about SEO Egghead getting spammed, today it seems alot more power blogs are suffering the same [...]

Pingback by BlogSecurity » Blog Archive » More WordPress targets for spam on November 16, 2007 @ 3:13 am

[...] a number of high profile sites have been targeted for spam and some don’t even know it. I stumbled across a post from EB [...]

Comment by SEO Egghead on January 22, 2009 @ 2:39 am

In part, because of this previous attack, we designed this “firewall” plugin –

http://www.seoegghead.com/software/wordpress-firewall.seo

We also use PHPIDs as well, but this is easier to install on client blogs … more of a 1-click install.

If you’re interested, I have some comments on WPIDS as well. There are a few more things you can do. I’ve sent you guys an email or two, but never got a reply =)

Leave a comment

(required)

(required)