| Web News |
UK boffins plan lunar mobile network
British scientists are planning to build a mobile phone network that operates on the Moon. The proposal was contained in a report compiled by Nasa and the British National Space Centre on joint co-operation...
BBC TV programmes put on iTunes
BBC shows including Life on Mars and Little Britain have been made available to download from digital store iTunes. The deal makes the BBC the first UK...
Government admits to 200 more stolen laptops
The government has admitted almost 200 laptops have been stolen from various departments, including the Ministry of Justice, since 2001. The figures for phone, laptop and PDA loss and theft across government...
Wii Fit to hit UK in April
Make a note in your diary and start limbering up, because Nintendo has finally revealed that both the Wii Fit and Mario Kart video games will hit the UK in April. The official UK release date for Wii Fit, which has...
|
|
02.20.08
How Wordpress Blogs Are Hacked
 By
Barry Welford
The previous two articles in this series have suggested ways to combat the ever-increasing hack attacks that WordPress blogs are receiving. In this final article, we will discuss some real-life examples and what can be learned from them. As a disclaimer, it should be noted that some hackers are very skilled and are continually improving their methods. These are anecdotes from the past and the future will undoubtedly be very different.
Typical Hacking Exploits
For specific details of typical hacking exploits, the following accounts are particularly good:
The methods used in these cases are probably all the work of one hacker, by nickname goro, who may well have been one of the commenters on the first of these three posts.
| New Server Offer! Double or Triple - You Pick The Winning Savings Combo - Click here today! |
We will not go into the specific details here (since they will undoubtedly evolve), but rather discuss the bigger picture associated with these exploits. In the case of the hacking done on the SMM blogs, there were some clever refinements. The mechanism inserted on the domain generated hundreds of random, unique blog post web pages, which included links to online pharmaceutical web pages. Since the websites were well ranked in Google, many of these hundreds of blog posts were served to the search engine spiders as they made their visits. After a period of hours, the mechanism then stopped. This may have been to avoid a huge spike in traffic, which would have been more easily
detected.
How Google May Have Rewarded Their Efforts
During the last two or three months, Google has been giving much more rapid visibility and higher ranking to blog posts in its regular web search. In the latter part of January, blog posts appropriate for particular keyword searches would appear within a small number of hours in the regular web search. The algorithm may well be using the RSS news feeds associated with the blogs. This gave particular prominence to the blog posts generated by the hacking mechanism. They would almost always appear among the top five positions on a search for particular online pharmaceuticals and often in the first position. Presumably this gave a significant economic advantage to the hacker.
Continue reading this article.
About the Author:
Barry Welford, President of SMM Strategic Marketing Montreal works with business owners and senior management on Internet Marketing strategy and action plans to grow their companies. He is a moderator at the Cre8asite Forums and writes on current issues on the Internet and on the Mobile Web in three blogs, BPWrap, StayGoLinks and The Other Bloke's Blog.
|
