Friendly forums for passionate Dems!
More than 92 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Retired Forums»Website, DB, & Software Developers»Frickin' script kiddie ha...»Reply #3
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Website, DB, & Software Developers

In reply to the discussion: Frickin' script kiddie hackers whatever [View all]

Tab

(11,093 posts)
3. I think is what happens
Reply to DaveJ (Reply #2)
Thu Apr 4, 2013, 05:18 PM
Apr 2013

- WordPress sites are easy to identify either by HTML or maybe just "Powered by WordPress" or whatever the hell on the same page.
- The default admin page is <site>/wp-admin (although you could change that)
- The default db prefix is wp
- The default admin user is 'admin', and default password is 'pass', although in our case certainly the password was different (if not the username).

There's more shit along those lines, but it starts there. I suspect they just iterate through it until they find something that works.

Interesting that they didn't kill the whole site (go all destructive on our ass) but just invalidated a few key files so we were obviously hacked. It just so happens my wife's husband (me) could ultimately unravel it, but for the average person with a WordPress site they'd be hosed with no obvious way to fix it.

Edit history

Please sign in to view edit histories.

Recommendations

0 members have recommended this reply (displayed in chronological order):

11 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies RecommendedHighlight replies with 5 or more recommendations
Frickin' script kiddie hackers whatever [View all] Tab Apr 2013 OP
False attribution attacks are apparently common these days. napoleon_in_rags Apr 2013 #1
How do they get in? DaveJ Apr 2013 #2
I think is what happens Tab Apr 2013 #3
I put up a Wordpress site for my company DaveJ Apr 2013 #4
Well, we didn't have admin/pass Tab Apr 2013 #5
Different methods. Dash87 Apr 2013 #7
yep script kiddies with a copy of 'backtrack5 for dumbasses'. Phillip McCleod Apr 2013 #6
I don't understand them either - what a colossal waste of time to just hack and destroy. gtar100 Apr 2013 #8
They tried again the next night Tab Apr 2013 #9
hacked selimx Jun 2015 #10
WordPress, the new Adobe Draug Jul 2015 #11
Latest Discussions»Retired Forums»Website, DB, & Software Developers»Frickin' script kiddie ha...»Reply #3
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2025 Democratic Underground, LLC. Thank you for visiting.