Sh#t, WPTidBits Was Hacked

Recently, when wptidbits was just launched for a few days, it went wrong. The site was not accessible and it shows some kind of syntax error originated from wptidbits.com/index.php on certain line. When i tried to enter admin page, it says same error on index.php. I believe it is not because of recent upgrade or because of the theme i used. I am very sure of it.

Then i tried to figure out from the root by downloading the index.php file itself and compare it to original index.php file i installed locally on my pc. See what i found. A malicious hacking script i do not know from where written all over the index.php file. At the very bottom of the codes…

maliciouscript

Have you ever found this on your site? It is really irritating and annoying to remove them. With this single line, they can snap out your life earning source just like that if you are running business site or an online diary of yourself written for years.  I do not know how they do this or what kind of sofware they use to enable this to happen.

Anyway, thank god i did the right thing at first by looking at the source. I believe they will come again. So precaution is a must. Later on i will post tips on how to take safety measure from this attacks and avoid being hacked. Hopefully this will be a useful experinece to us.