Hi,
My website has been desabled this morning by my hoster because of a
phishing issue.
The reason invoked was :
« Your site is used for phishing operations at the following address:
https:// [my site] /openid/secure_ID/verified_by_paypal/
webscrcmd=login-run/cgi-bin/_login/ »
I checked my WP installation (up to date 2.9.2, all plugins up to
date, too) and find no corrupted file nor data.
So my conclusion is that my site wasn't hacked, but that there is a
weakness in OpenId plugin enabling this "phishing operation". Thus, I
deactivated the plugin and for now, I'm waiting for my site
reactivation.
I wish I was wrong and I missed something somewhere ... so if you
could enlighten me and point at something I should check... that would
be nice!
Sorry if it's not the right place to send this type of request (if so,
please tell me where I should rather post it)
Regards,
Jérôme, Paris, France.
--
You received this message because you are subscribed to the Google Groups "Diso Project" group.
To post to this group, send email to
diso-p...@googlegroups.com.
To unsubscribe from this group, send email to
diso-project...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/diso-project?hl=en.