on
June 6th 2008 at 9:43 am in Computers & Hardware, Internet & Technology, Security & Privacy, Software For fun I was checking out my statistics and discovered that my theme got hacked: the footer and header were replaced, inserting spammy URLs into the outputted page, together with some Google Adsense code.
Yay.
As a result I am now delisted from Google’s index. 
Apparently, this has been going on for a couple of months, but I was too busy with actual work so I never read any articles about it on the security-sites I normally occasionally visit.
Oh well, shit happens, and stuff has quickly been cleaned up (thank you, backups!) … and for safety have upgraded to the latest WordPress version. Not having upgraded a while ago, I was really just waiting for this to happen (yeh, lazy sysadmins et cetera )…
Seeing that basically the attacker could run any PHP code of his/her choice, which could include calling system binaries to retrieve information about user accounts or passwords. As I can not be a 100% sure about that at this moment, all the passwords have been reset to protect the innocent.
I am curious how long it’ll take before I get listed on Google again (as I still see Googlebot regularly visit the site)…
This morning I noticed that this site is now again “findable” with Google.
Yay!