My Blog Was Hijacked!

I apologize in advance if this thread is miscategorized, but I couldn’t find a better category for posting. Anyway…

Yesterday afternoon when I attempted signing into the admin panel of my WordPress blog, I received a pop-up message stating, “The page at says: Warning! Your computer is at risk of malware attacks…”

Then, when I finally sign into the admin panel, the page looks completely destroyed. The tabs that generally drop down have already been revealed and the page information consistently states that the page loads, but with errors.

Last night, I speculated as to what this problem may be attributed to and the only thing I can possibly think of was adding several posting comments from untrusted/unverified contributors.

The only other possibility I was able to generate was that by possibly throwing Spammy comments into the ‘Trash’ v. reporting them as ‘Spam’, I may have left myself at risk for high-jacking.

Any and all insight the esteemed SitePoint community may be able to provide would be greatly appreciated. Thank you in advance!

An insecure WordPress installation is a spammer/trojan’s dream…

The warning diagnosis I got from Google on that domain was:

What is the current listing status for

  • Site is listed as suspicious - visiting this web site may harm your computer.

  • Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?

  • Of the 137 pages we tested on the site over the past 90 days, 0 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-10-04, and the last time suspicious content was found on this site was on 2010-10-04.

  • This site was hosted on 1 network(s) including AS32181 (ECOMD).

Has this site acted as an intermediary resulting in further distribution of malware?

Has this site hosted malware?

How did this happen?

  • In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

Next steps:
* Return to the previous page.
* If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google’s Webmaster Help Center.

So there’s a couple of possibilities:

  • your web-host has been infected with Malware (possibly)
  • you have an un-patched WordPress vulnerability (less likely if you’ve been updating your WordPress version)
  • an XSS or SQL-injection has occurred

I’d be contacting my web-host in the first instance if I was you.