/ kalebeul / 2008 / 06 / 04 / more on the hack attack adolfo daine manchurian candidate /
More on the hacker who briefly brought baldie enterprises to a shuddering halt the other day. The problem is now fixed and I haven’t got time to investigate properly, but I no longer have any reason to believe that the attack was purely permissions-based, exploiting the tendency of most of us to 777 /wp-content/ directories. Instead this is roughly what I think happened:
WordPress support lists a user name apparently belonging to http://www.marksaves.com, which is begging spam masquerading as political news, run by a poisson who describes himself as Mark Taylor PhD, claims to be interested in SEO, and appears to have been installing WordPress himself in September or October 2007.
“Adolfo Daine” has registered for no apparent reason on WordPress sites worldwide in a variety of languages. Here are some of his targets: Demi-Fantasy, in Vietnamese, The Lair of the Cubelodyte, absoluteperplex, in German, and hundreds of others. Interestingly, none of these registrations seem to be older than September 2007.
I presume “Adolfo Daine” or “Mark Taylor” or whoever’s intention is to hijack pages, filling them with spam links, so I find it hard to understand why the string injected was sufficient to draw attention to its existence–and thus facilitate its removal–but insufficient to achieve its purpose. Does “Adolfo Daine” or “Mark Taylor” need a bit of help?
[
I'm interested in the human aspect of this, so if whoever's doing it wants to tell me more on a confidential basis of some nature, please get in touch via the contact form quoting the day in October on which you registered on the Libro Verde site.
If Mark Taylor exists, actually has a PhD, and is really engaged in legitimate business, it would be interesting to hear his public account of how he came to be mixed up in all this. If he doesn't want to go public, I know a couple of people in Atlanta who would be most happy to come and visit him.
]
Trevor @ 4 June 2008 1:45 PM
All commission on sales via this site of The Manchurian candidate or other books by Richard Condon
will be spent in a wifi-free pub. More books here.
Feeds: RSS
Trackback link.
162Tell me if the spam dragon gives you a hard time. Log in if you want to be really foul.
On Facebook, Trevor is eating saucisson de sanglier and starting to look like Obelix.
5:22 PM on 4 June 2008
I wasn’t sure whether I should find that picture of Dr Mark Taylor sexy or not.Then I realised that I was supposed to… check out the filename!
That site is awesome. Even better is the associated http://www.usa180.org/ which contains a long email written by someone who appears to have been smoking meth. Truly fascinating. The italics and bold are, I believe, the computer equivalent of purple ink in a letter to ‘er Maj, I reckon. Bookmarked.
5:58 PM on 4 June 2008
If Dr. Tom says a site is as good as smoking meth I suppose we’ll have to believe him.
6:00 PM on 4 June 2008
I don’t think he did say that, but one day he might.
6:05 PM on 5 June 2008
No site is as good as smoking meth, so far as I know.