21.Nov.2011 Timthumb WordPress Vulnerability

Filed In: Server Hacked

The wordpress Timthumb vulnerability continues to affect site owners as they are unsuspectingly hosting phishing sites.

Months after the event, webmasters are realising they are the subject of an attack and cannot do anything about it. We’re still getting calls about it. timthumb.php is part of a large number of extensions, themes and plugins available for wordpress. Unfortunately due to the way it was coded, it allowed attackers to upload files to writable directories on the website in question, and run whatever code therein. Sometimes this was used to deface the site in question by inserting code into the header files of a website, or sometimes this was used as a phishing location. Phishing means that a page was created in order to get usernames, passwords, credit card information by pretending to be a bank or similar.

There are several scanners for this here being one, however if you need an audit give us a call using the details below.

How Much Does It Cost For Salvage My Site to help?

Call us on 01204 371037 or email us to see if we can help you.

DurationPrice
Per Hour (Mon-Fri 9am-5pm)£60
Per Half-Day (Mon-Fri 4hours)£210
Per Full-Day (Mon-Fri 8hours)£400
Per Hour (Non-working hours outside 9am-5pm Mon-Fri)£120
*All prices are exclusive of VAT at the prevailing rate.


SalvageMySite is a subsidiary of 3DPixel Ltd. Company #04721309 | Vat:876 4611 93
Suite 12, 1-3 The Courtyard
Bolton, Lancashire, BL1 8PB
01204371037
United Kingdom

No Comments
Tags: ,