50ft Under Attack (Updated)

It has been brought to my attention that 50ft’s wordpress installation has been compromised and some readers are being forwarded to annoying virus protection sites and equally annoying other sites. If this happens to you at any point browsing the site PLEASE send me an email john(at)twistedsun.net to let me know. I found a bunch of malicious code in my database and cleaned it out but something is apparently still lingering. This is affecting some users sometimes but not all the time. Im not sure if its on any browser or just select ones.

I know very little about such things and I am doing all I can to track down the problem so if you have any suggestions or have any troubles let me know. I am sorry for the mess, it is really really frustrating that hackers would exploit simple wordpress pages for their own gain… Thanks for understanding and bearing with me as I get through the issues at hand.

UPDATE: Things are under control now as far as I know, I have cleared out nearly every file in the site and replaced them as well as cleaning out my database of all hacked code. Took some time to find it all but it seems to be taken care of and more security has been put in place to prevent future incidents.

I am so very sorry to anyone effected by this, the reason for it happening, turns out, was a server venerability where hundreds of wordpress users on my server were effected. I will be keeping a close eye on measures they take to prevent it from happening again. I can’y have my readers at risk because of that!

Thanks for everyones help with the matter, it was greatly appreciated.

Comments

  1. Lisa Blair - July 18, 2010 at 12:20 pm

    Yeah this happened to me last night around midnight. I was about to leave a comment when that pop-up tried to “scan for viruses”. I’m using Firefox v4.0b1.

  2. john - July 18, 2010 at 12:51 pm

    Hmmm…. I THINK I have gotten rid of the infected code… please report any other messes… Sorry for this.

  3. john - July 18, 2010 at 5:30 pm

    Well, I think I will leave it at that for now, I have to get going to work, what a waste of my time this whole mess has been. ah well, keep an eye out for weirdness.

  4. Nick - July 18, 2010 at 5:47 pm

    I noticed this afternoon that the site was down. As I refreshed, it was clear that someone was going through the WordPress install. The first time through they encountered “Error establishing database connection,” which means either the MySQL user or database were incorrect.

    I don’t know whether or not that was you, but I thought it was worth mentioning. Might be worth checking your configuration file.

    Using Firefox 3.6.6, if it matters.

  5. John - July 18, 2010 at 5:57 pm

    Thanks nick, yep that was me reinstalling things on the site. Thanks for the heads up though!

  6. Jeff Byrnes - July 19, 2010 at 2:20 am

    Oof, no fun when this happens. Keep everything up to date, and check out some of the general security things, as well as security plugins, to try & batten down the hatches:

    http://codex.wordpress.org/Hardening_WordPress
    http://www.noupe.com/how-tos/wordpress-security-tips-and-hacks.html

  7. Paul Anthony Webb - July 19, 2010 at 11:55 am

    This always seem to happen to really popular sites that people *love* . . . why do hackers feel a need to get rid of that happy feeling? I just don’t get it.

    Good luck John.

  8. Tom - July 29, 2010 at 12:25 am

    Yeah thanks for this, my computer got a virus by going to your site and I just today got my laptop back from the Geek Squad at Best Buy. Nice wallpapers aren’t worth getting a virus.

  9. john - July 29, 2010 at 12:37 am

    Ugh, Tom, I am so so very sorry to hear that happened as a result from visiting! I really hated that it happened and after reading more about it I discovered that thousands of other wordpress blogs had been infected in the same way.

    As mentioned above I have taken a LOT of measures to make sure that it does not ever happen again and greatly tightened security within wordpress and my host as assured me that they are solid on their end as well and I will most likely be changing hosts soon due to that attack.

    The worst part was that it was beyond my control when it did occur and its unfortunate there are people out there taking advantage of users of the web like that.

    So again, I am more than sorry about the trouble caused to you and anyone else it may have effected and I have done all I can within my power to make sure it does not ever happen again!

  10. Suyash Sonwalkar - August 10, 2010 at 6:25 am

    You might consider switching to Posterous.

  11. John - August 10, 2010 at 1:17 pm

    Suyash, I opened an account with them when they first popped onto the scene and while I did admire the simplicity of it it’s not quite as flexible as I would like it to be. The reason for using word press is because it is easy to manipulate and customize and I like having that kind of control over the site. If this were more of a traditional personal blog of sorts I would have no problem using a service like that, sort of like how I use tumblr for my around the web found photo sharing and for my iPhone photos. But because i plan on slowly expanding the site to include different customized content and capabilities in the future I feel i should stick with word press.

    This mess mentioned in this post was the only time anything negative has come from using it and i have taken measures to stop it from happening again.

    I appreciate the idea though! Who knows, maybe one day I will move to a different service. :)

  12. Vladimir - August 19, 2010 at 4:17 pm

    Hello. you’re doing really excellent work. That there. SUPER classroom. Your photos are awesome. Thank you !

Leave A Reply

To whom it may concern,

IMAGES FOUND WITHIN FIFTYFOOTSHADOWS.NET ARE ©JOHN CAREY AND MAY NOT BE USED FOR ANY COMMERCIAL USE WITHOUT PERMISSION. 

DO:

• Enjoy the images! It’s a labor of love, thanks for your support!
• Share fiftyfootshadows.net with friends.
• Send me a quick mail if you are interested in using an image for commercial or personal use other than wallpaper.

DON’T:

• Post desktops elsewhere online.
• Share links directly to images.
• Pass them around in mass.
• Make prints.
• Use images for web banners or graphics. (send a quick email to ask, I’m pretty easy going about this with permission.)
• Use them in commercial work.

If you help me out with these I will be able to keep doing what I love to do. Thanks again, really, for your support and understanding. -J

——

By downloading any content from fiftyfootshadows.net you agree to the following terms:

All of the images contained within this website, fiftyfootshadows.net, are property of, John Carey unless otherwise posted. The images are distributed as freeware but they are available for personal use only on your personal computer, tablet, or smartphone as your wallpaper image. Any use of these images for any purpose other than this is a violation of these terms and anyone found using said images will be asked to either compensate the creator for doing so or be asked to stop using them immediately.

I ask that you refrain from using any images found on fiftyfootshadows.net to create physically printed material of any kind. This includes posters, photographic prints, fliers, etc. Under no circumstances may you make a physical reproduction without written permission.

These rules also apply for any artwork or imagery submitted and shown within this site which was created by an artist aside from myself. Any images submitted and shared as wallpapers are the property of the artist who created them and in the same manner as my images, you are asked to receive permission before using them in any way aside from their intended use. Any use of these images outside of for your own personal use as a desktop wallpaper image is prohibited without permission from the author of the image. Commercial licensing is available upon request. Please write with any inquiries.

When sharing images via your personal blogs I kindly ask that you link back directly to either the post the image was taken from or the base of the website at www.fiftyfootshadows.net and give a credit to www.fiftyfootshadows.net. Do not re-post full resolution desktop images anywhere without permission. If you would like to use an image for your blog background or something of the sort simply write to ask first. Support the artwork you admire! Also, it is greatly appreciated if you do NOT link directly to the zip files. This is more or less the same as re-posting them as it circumvents the tiny bit of support I ask of you which is to simply link back to the original post for others to enjoy the site.

It’s not fair to artists if you do not credit their work and link back to the original content creator. It is theft plain and simple and blogs that attempt to somehow be mysterious by not giving credit to the creators are simply hurting the artistic community as a whole. If you love it so much then please, support it! The artistic community on the Internet is based on trust. Without trust then what do we have? are you going to be one of the responsible users out there or will you be among the bottom feeders, stealing content and passing it off as your own to make a quick buck in ad sales.

Use your best judgement and we will get along just fine.

Thank you for your understanding and support!

John Carey (curator, owner)

fiftyfootshadows.net

fiftyfootshadows@gmail.com