Surviving a Hacking Incident

Someone who does the hacking is called a hacker. “In a security context, a hacker is someone involved in computer security/insecurity, specializing in the discovery of exploits in systems (for exploitation or prevention), or in obtaining or preventing unauthorized access to systems through skills, tactics and detailed knowledge.” If we take that definition, then the Atty-at-Work site is the subject of hacking.

Google warning for search

Just the other day, I was informed that searches through Google has this warning: “This site may harm your computer.” The SEC website previously suffered a similar tag from Google. If you Google-search or if your search string returns a hit to this site, the warning appears under the site name, as shown in the image above.

We immediately proceeded to check what’s wrong, sending an email to Google and Certain posts and subdomains were removed. The core wordpress files were upgraded. A scan of the posts reveals that THREE posts include an unauthorized code which appear to be the reason why Google tagged this site. While Google detected “suspicious” activity in this site, it also went on to say that the site “did not appear to function as an intermediary for the infection of any sites” and that “‘this site has not hosted malicious software over the past 90 days.” In other words, the warning was triggered by codes inserted into three posts without my knowledge and consent. Just so you may have an idea what to look for should you fall into the same circumstance, here are the 3 codes:

In just one day after our request, the warning was removed by Google. Hope this won’t happen again to this site. Hope it won’t happen to you.

One comment

Leave a Reply

Your email address will not be published. Required fields are marked *