Network Solutions deploys a fix for WordPress installation
The researchers at Sucuri Security were the first to find the attack that affected the WordPress blog versions. The attack is associated to the changes in the contents of the site that are present in the WordPress database. The IFRAME tag that was inserted by the attacker in the database meant that a malicious website would be pointed out by the site URL whenever one renders the contents on the WordPress blog.
The attack did not even spare the blogs that had limited administrative access to only a few IP addresses. The problem had apparently occurred due to the way the file permissions had been configured on the host server. The WordPress blogs require the wp_config.php configuration to be hosted independently and this keeps the access credentials in plain text for a blog.
The software though was not properly installed by many users and consequently they had to deal with the situation where anyone could read their files. The sources at Sucuri made it evident that the attacker had found a way to find the incorrectly configured files using a script. He could then access the credentials of the database by retrieving these wrongly configured files. He then accessed the database using these credentials to point a malicious website.
Anyone could be blamed for the present situations. WordPress should have secured the database credentials by default. The users should also have taken the initiative to guard their blog from such unwanted use. Network Security has come up with the recommendation that all the WordPress users should change their passwords by logging into their accounts.
Comments
