Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites
This blog post talks about how a web spam campaign that targets only one country may create problems for sites owners around the world — even if their site is not hacked.
It all began with a pretty regular sample of an infected WordPress index.php file containing a long, encrypted one-line injection in front of the legitimate code.
Base64 encoding was only the first layer of obfuscation, however.
Continue reading Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites at Sucuri Blog.