Clik here to view.
Tales from a base64 wordpress hack, part 1: detection
So as I mentioned in my previous post, this blog was compromised earlier today, with the nefarious base64() hack. I’m still picking up the pieces, and viewing this as being pushed into finally...
View ArticleTales from a base64 wordpress hack, part 2: recovery
Time for some investigative work. This post may get unapologetically technical. So I began by looking at my access logs from the day that the compromise occurred, I started with just a full browse of...
View ArticleTales from a base64 WordPress Hack, part 3: prevention
(See parts one and two for background information.). My sites are almost fully recovered. I’ve ditched the old fancy theme in favor of a more austere default theme that turns out to have some pretty...
View ArticleTales from of a base64 WordPress Hack, part 4: dissection
Got hit again, briefly. Was able to recover very quickly thanks to the Git repos I had set up previously. I found a couple extra backdoors, using some alternate obfuscation methods. Instead of the...
View Article
