Fake WordPress update 2.6.4 steals data!

[ad#ad2-left]

The hacked version of the file pluggable appears to be stealing the content of cookies on larger installations of WordPress. Sophos are now detecting this file as Troj/WPHack-A.

[Via Sopho’s]

Apparently this little update is a rogue update.  According to Sopho’s and Craig Murphy’s blog, it is said to steal your data and send it to another site.  This hacked version of WordPress is coming from wordpresz.org so if you happen to stumble onto this fake update, just delete it and go on with your blogging.   Craig talked about how when he logged it this fake update popped up.  So sometimes it is safer to do some digging before you apply an update especially to your Operating system.  Thanks to Sopho’s for telling people about this fake and dangerous problem.

6 Comments

  1. It has to do with the economy, I also think they want to get blogs to host there malicious software so when people come to sites they will infect other computers. This is always going to be a problem!!!

  2. It has to do with the economy, I also think they want to get blogs to host there malicious software so when people come to sites they will infect other computers. This is always going to be a problem!!!

  3. It has to do with the economy, I also think they want to get blogs to host there malicious software so when people come to sites they will infect other computers. This is always going to be a problem!!!

Comments are closed.