petermeadit
Top Contributor
Did you know that hackers find vulnerable sites by using something called a "Google Dork"? It's a crafted search that exposes websites running a vulnerable theme, plugin or application in the Google search results. A recent example of this is the Ghost theme vulnerability I mentioned above. In the exploit that has been published online, hackers include a Google Dork to find websites running this theme. In the case of Ghost, hackers use the following crafted search to find vulnerable sites:
inurl:wp-content/themes/Ghost/
As you can see the above search yields about 20,000 results, enough to keep a hacker busy probing sites for quite some time.
(Above information taken from media release for the popular WordPress security plugin Wordfence http://www.wordpress.org/plugins/wordfence/)
Had some hacked sites this week and I just dunno, Google Dorks and Ghosts... Geeez!
inurl:wp-content/themes/Ghost/
As you can see the above search yields about 20,000 results, enough to keep a hacker busy probing sites for quite some time.
(Above information taken from media release for the popular WordPress security plugin Wordfence http://www.wordpress.org/plugins/wordfence/)
Had some hacked sites this week and I just dunno, Google Dorks and Ghosts... Geeez!