Hacked by Hmei7, Anonghost, or Isis? Let Graphic Lux help.
What or Who is this Hmei7?
Hmei7 is an Indonesian Top Hacker that has created some chaos on WordPress (and Joomla) websites in the past (2012) and fairly recently. Known for Mass Defacements, Hmei7 has claimed to have defaced more than 5000 websites in under 3 days. He has hacked many high profile websites including IBM, Microsoft, SIEMENS, AVG, Foxconn. He also defaced thousands of Government websites belong to different countries.
How did Hmei7 hack your WordPress website?
What did Hmei7 do?
It seems that Hmei7 gained access to several database servers and then simply ran simple SQL scripts on the various MySQL databases. He than ran the script against all Post and Page titles and merely replaced existing titles with a script that ‘created’ the popup. WordPress has a title on every Page and Post so it was a simple but very effective hack. Some WordPress sites claim that passwords have been changed for users but again this is simple enough to do via a generic SQL script (no need to panic as WordPress passwords are generally secure enough and are stored as an MD5 hash i.e. others are unlikely to be able to read your password even if they have access to the MySQL database).
So how did Hmei7 get into your Website?
Unfortunately we don’t know exactly how the hacker gained access to the database however we haven’t seen any evidence that WordPress, Themes or Plugins were the entry point for the attack.
And what could you have done to prevent being hacked?
Hosting can play a small role, if you are on shared hosting you will have more chances of getting hacked than on a dedicated server. Having a WordPress Maintenance team to actively watch and update your WordPress Core, WordPress Themes, WordPress Plugin’s and also proactively running security scans will help you avoid these types of hacks. Graphic Lux has been proven to be one of the top providers of WordPress Care & WordPress Maintenance plans.
What or Who is this Anonghost?
Anonghost, lead by Mauritania Attacker, hacker group that hacked thousands of websites including government website, Database leaks, email leaks and Mark Zuckerberg Facebook Account’s hijacking. The hacker who founded the AnonGhost Team group, said the reason behind its attacks was simple:
We are very proud that we are defending Palestine. It’s a duty to try to establish peace for humanity, spreading awareness. As you can see religion doesn’t make us different, or nationality, we are united together.
The “we” their leader is talking about is the group of hackers that makes up Anonghost. Anonghost is mostly based in 15 different countries across Africa, the Middle East & Europe.
How did Anonghost hack your WordPress website?
Below is an actual YouTube video from Anonghost showing you how they hacked and got access through WordPress’s Remote File Upload Vulnerability.
And what could you have done to prevent being hacked?
Hosting can play a small role, if you are on shared hosting you will have more chances of getting hacked than on a dedicated server. Having a WordPress Maintenance team to actively watch and update your WordPress Core, WordPress Themes, WordPress Plugin’s and also proactively running security scans will help you avoid these types of hacks. Graphic Lux has been proven to be one of the top providers of WordPress Care & WordPress Maintenance plans.
What or Who is this Isis?
ISIS is after you
The United States Federal Bureau of Investigation (FBI) is warning WordPress users to patch vulnerable plugins for the popular content management system before ISIS exploit them to display pro-ISIS messages.
According to the FBI, ISIS sympathizers are targeting WordPress sites and the communication platforms of commercial entities, news organizations, federal/state/local governments, religious institutions, foreign governments, and a number of other domestic and international websites.
How did Isis hack your WordPress website?
Isis exploited vulnerable WordPress Plugins and in addition pro-ISIS sympathizers are creating fake government websites to trick people into handing over the personal identity data which lead them to identity theft.
Whats worst is that these fake sites are appearing at the top of the search engine results. Prompting their victims to click on the fake sites and sending their sensitive data. The scam sites usually charges a fee to complete the service requested, which encourage the victims to send their more personal data further.
Before a victim realizes it is a scam, the money has already been funneled out of their bank accounts and their personal identities have been compromised, which can be used by attackers for any number of illicit purposes.
And what could you have done to prevent being hacked?
Hosting can play a small role, if you are on shared hosting you will have more chances of getting hacked than on a dedicated server. Having a WordPress Maintenance team to actively watch and update your WordPress Core, WordPress Themes, WordPress Plugin’s and also proactively running security scans will help you avoid these types of hacks. Graphic Lux has been proven to be one of the top providers of WordPress Care & WordPress Maintenance plans.