Yesterday I was sent an email from a former student of WordPress training that I do at the College of Southern MD. regarding a virus that is attacking WordPress 3.2.1.
I was somewhat surprised yet more shocked that I hadn’t heard about this from any of my “daily” WordPress blogs that I subscribe to or any of the WordPress community. So at first I thought it might be a hoax so I ran it through Snopes.com and nothing came back saying it was a fake.
So I’d like to share some of the story with you, along with a link so you can read the entire article and share with you an inexpensive plugin that you can check to see if your site was infected.
Malware-spreaders are hacking into vulnerable WordPress-powered sites in order to drive traffic towards pages loaded with exploits.
Hundreds of websites based on WordPress 3.2.1 have been compromised so that surfers directed to the WordPress-built sites via email links are exposed to the Phoenix exploit kit, M86 Security warns.
A full-write up of the attack, including screenshots, can be found in a blog post by M86 Security here.
Now you should know that WordPress is now in version 3.3.1; however MANY WordPress owners either do not update their versions, or don’t know how to update their version, which is really very simple. (I’ll teach you that in another post).
What I want to share with you today is how you can quickly and easily check to see if your WordPress site has been infected.
Step 1: Purchase BackupBuddy by PluginBuddy. BackupBuddy is a premium plugin that not only backs up your WordPress site (and will send it to S3, Dropbox, FTP, your email, or Rackspace Cloud) AND has a built in Malware Scan
And look at all the other cool things it offer:
- Backups and Restores your WordPress site
- You can schedule your backups – put it on automation baby!
- You can even migrate your WordPress site to another site!!
- PLUS when you get BackupBuddy, you also get access to their support forum. (Which I can tell you is one of the best I’ve used since 1996!)
Step3: If everything checks out OK now back up your site.
Step 4: Deactivate all your plugins
Step 5: Update your version of WordPress.
Step 6: Activate your plugins one at a time. Activate one and look at your site live – why? Because you might have a plugin installed that won’t work with the newest version of WordPress. Activating one at a time, looking at your site to make sure all is working and repeat the process. If a plugin isn’t up to date and doesn’t work properly with the newset version of WordPress you’ll know which one to either keep deactivated doing it this way or see if there is an update for the plugin.
Step 7: Need Help? Fill in the form below. We’ll get back to you shortly.