WordPress Malware...check your sites!

December 16, 2014 4.1k views

Looks like another WordPress exploit.:
Some 100,000 or more WordPress sites infected by mysterious malware

Just checked all my sites and they look good. I did not bother using the suggested site scanner, but rather looked at the source code of all pages, since this:

“The in-the-wild attack observed by Sucuri causes infected sites to load highly obfuscated attack code on every webpage that includes the following:”


From what I have read, this was specific to sites using Slider Revolution, a premium WordPress plugin/

2 Answers

Thank you so much for posting this, my entire site got it’s poo pushed in.

Thank god I used a backup plugin.

The attack blocked me out of my admin panel, corrupted the entire website - I’m still learning on Wordpress stuff, so I would’ve lost 5 months without a backup plugin.

Thanks for posting this, I’ve disabled the slide plugin right away.

  • Out of curiosity, how did you check? Did you use the site-scanner linked to in the article, or check your source-code?

  • Well I used the website.

    And the first thing that dropped dead was my rev slider.
    After that I couldn’t load my wp-admin, and the final step my entire website went down, without having made any changes for a week or two.

    So now I’m just looking for a slider plugin to replace it.

  • I use Flexslider from WooThemes:

    There is a plugin for it, but I just code it right into the theme. Works great.

TO check, use websites like https://www.virustotal.com/ for URL scanner !!

Have another answer? Share your knowledge.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!