In the last few days the Gumblar malware injection attack has been making the rounds and hopefully you’ve taken preventitive measures to ensure that you are as safe as you can be from this annoying injection attack.
Just so you’re aware the reason for this attack is Blackhat SEO spammers are attempting to insert a hidden link on your site for the purposes of link building. The problem is it’s not only illegal, it’s incredibly lame.
Here’s another scenario, let’s assume for a second that your site did in fact get hijacked. Likely what you will be left with is an annoying script in a tond of your WordPress site pages. Not just in your theme but in anything beneath wp-content that they could inject.
This might include:
Your only solution at that point is to reinstall WP (thus over writing the compromised files), re uploading your theme (backup!) and reinstalling all of your plugins. That would then get every file restored.
Now that’s a time consuming and lengthy pain in the ass process to be honest. So let’s be a bit proactive and add some functionality to your WordPress site that will automate some of these things for you.
Here’s a list of trusted management, backup and resoration plugins I use on all my sites:
In general people do not like to think about things like backups. It’s not a very sexy subject to say the least. But from my experience there is nothing worse than having to weed through a mass of files, downtime, and just the frustration of repairing things.
These backups can make a bad experience like getting injected relatively painless. It’s a bit of a “set it and forget it” scenario.
If this is your first visit here you might want to have a look at my other WordPress Security and SEO Posts
All the best,
A human being spinning around on this big blue marble with the rest of you, interested in Media // Music // Art // Family // Business // Founder of http://hny.pt
Integrating Bootstrap and Genesis
How to exclude Digg Digg from WordPress pages & posts
Google Font API Thesis and WordPress
WordPress Desktop Client for Mac
MacJournal Review and Tests
WordPress Exploit Gumblar .cn
WordPress Security Plugins
Blocking Spam with WordPress