This blog post talks about how a web spam campaign that targets only one country may create problems for sites owners around the world — even if their site is not hacked.

It all began with a pretty regular sample of an infected WordPress index.php file containing a long, encrypted one-line injection in front of the legitimate code.

Base64 encoding was only the first layer of obfuscation, however.

Continue reading Korean Gambling and Call Girl Spam on Hacked and Non-hacked Sites at Sucuri Blog.

Via Sucuri.net