Protect Your WordPress Blog

I was viewing a friend’s website on my Blackberry the other day, when I noticed a bunch of random unrelated links above his header. There were Viagra links, Honda links, Cialis links, Acai links…etc. You name the affiliate link, and it was probably there. When I visited his site on my laptop, those links were nowhere to be seen.

Several months ago, I had a similar problem, which my developer diagnosed as some sort of code injection. This was attributed to my not upgrading to the latest WordPress version (currently 2.8.4). Basically when security flaws are found, WordPress closes those holes in the next edition, and site owners need to upgrade ASAP. Because hackers and other malicious people can then learn what security flaws were found in the previous version, they can exploit those flaws in blogs and websites that aren’t running on the most recent version.

In any case, it can be a bit tricky to remove the cause of the malicious links, but it’s important to do so, otherwise your site is leaking “search engine link juice,” and those links can be harmful. This doesn’t even consider that other areas of your site may have been attacked, which can cause other problems. Simply upgrading to the newest version of WP may not help, as the malicious code will still be there.

One of my the best things for me is that the person who manages the technical side of my blog is knowledgeable about programming and WordPress, and he has been able to help me with errors (both human error and a malicious hacking attempt). If you don’t know of a capable person, it would be wise to find someone smart that you trust who can help you at a moment’s notice. There are also plenty of resources on the web that can help you, but sometimes the fixes are complicated.

Always be on the look out for strange things that happen with your blog’s performance and layout, and if you notice something funky, don’t just cast it aside. Search Google, Twitter, and WordPress to see if other people are facing the same issues. Stay on top of WordPress or other platform updates and security warnings, and you may help prevent damage to your website.

Elliot Silver
Elliot Silver
About The Author: Elliot Silver is an Internet entrepreneur and publisher of DomainInvesting.com. Elliot is also the founder and President of Top Notch Domains, LLC, a company that has closed eight figures in deals. Please read the DomainInvesting.com Terms of Use page for additional information about the publisher, website comment policy, disclosures, and conflicts of interest. Reach out to Elliot: Twitter | Facebook | LinkedIn

4 COMMENTS

  1. Although many use WordPress, this type of hacking is not only limited to WP sites, but other sites as well. I had wrote about a sneaky hack job that was done to one of my sites and it is not a WP ran site currently. http://www.dotweekly.com/2009/09/11/the-hidden-hacker-redirecting-some-parts-of-site/

    The basics of what I wrote in my post, the hacker redirects “some” parts of your site to their site, parking page, affiliate program etc. At times, visiting the domain of your site simply redirects you to the hackers site.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Recent Posts

Bob Mountain Announces Retirement

4
For the past 15 years, Bob Mountain has held senior roles at NameMedia (then parent company of Afternic) and GoDaddy. During his tenure, Bob's...

How I Got Quick Delivery of GoDaddy (Private) Auction Wins

8
GoDaddy has been running a private auction featuring domain names from its NameFind portfolio. I have been following the auctions and bidding on a...

What Does Atom Say Your Most Valuable Domain Name Is?

21
Yesterday afternoon, Atom.com released its updated automated domain name appraisal tool. The tool is free to use and offers some insight into its value...

Liquidity.com Sold for 7 Figures

3
Liquidity Group, a company that is billed "as a leading AI-driven direct lender operating a multibillion-dollar portfolio globally," made a significant domain name upgrade....

Failed Transfers Aren’t Automatically Refunded

11
I keep most of my domain names registered at GoDaddy because I find it is easier to manage a portfolio at one registrar. Throughout...