{"id":10814,"date":"2010-01-27T14:21:07","date_gmt":"2010-01-27T09:21:07","guid":{"rendered":"https:\/\/www.quickonlinetips.com\/archives\/?p=10814"},"modified":"2020-05-24T10:24:35","modified_gmt":"2020-05-24T04:54:35","slug":"techcrunch-hacked-hackers-find-security-exploit","status":"publish","type":"post","link":"https:\/\/www.quickonlinetips.com\/archives\/2010\/01\/techcrunch-hacked-hackers-find-security-exploit\/","title":{"rendered":"TechCrunch Hacked Again! Hackers Find Security Exploit"},"content":{"rendered":"<p>TechCrunch hacked! Its unbelivable but true. As I visited the top tech blog, I found the entire <a href=\"http:\/\/www.techcrunch.com\/\" rel=\"noopener\">TechCrunch.com<\/a> site is offline and this notice is posted<\/p>\n<p><img decoding=\"async\" class=\"alignnone size-full wp-image-10815\" title=\"techcrunch hacked\" src=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked.png\" border=\"1\" alt=\"\" width=\"485\" height=\"112\" srcset=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked.png 485w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked-150x34.png 150w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked-300x69.png 300w\" sizes=\"(max-width: 485px) 100vw, 485px\" \/><\/p>\n<p>A lot of blogs were buzzing and found different screenshots. <a href=\"http:\/\/www.inquisitr.com\/59036\/techcrunch-hacked\/\" rel=\"noopener\">Inqusitr<\/a> says as of 10:20pm PDT Monday (Jan 25) TechCrunch was offline with a message that  simply stated \u201chi\u201d on its main page.<\/p>\n<p><img decoding=\"async\" class=\"alignnone size-full wp-image-10818\" title=\"techcrunch hacked \" src=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked1.png\" border=\"1\" alt=\"techcrunch hacked \" width=\"363\" height=\"91\" srcset=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked1.png 363w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked1-300x75.png 300w\" sizes=\"(max-width: 363px) 100vw, 363px\" \/><\/p>\n<p><a href=\"http:\/\/technologizer.com\/2010\/01\/25\/techcrunch-hacked\/\" rel=\"noopener\">Technologizer<\/a> says they found this bad worded message posted<\/p>\n<p><img decoding=\"async\" class=\"alignnone size-full wp-image-10817\" title=\"techcrunch hacked \" src=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked2.png\" border=\"1\" alt=\"techcrunch hacked \" width=\"400\" height=\"77\" srcset=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked2.png 400w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked2-300x57.png 300w\" sizes=\"(max-width: 400px) 100vw, 400px\" \/><\/p>\n<p>Techie-Buzz found a rapidshare download link onsite<\/p>\n<p><img decoding=\"async\" class=\"alignnone size-full wp-image-10816\" title=\"techcrunch hacked \" src=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked3.png\" border=\"1\" alt=\"techcrunch hacked \" width=\"339\" height=\"87\" srcset=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked3.png 339w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/techcrunch-hacked3-300x76.png 300w\" sizes=\"(max-width: 339px) 100vw, 339px\" \/><\/p>\n<p>Its seems the secuity exploit which enabled hackers to take Techcrunch offline and post spam messages and links is not yet identified as TC continues to be offline.<\/p>\n<p>Techcruch is powered by <a href=\"https:\/\/www.quickonlinetips.com\/archives\/tag\/wordpress\/\">WordPress<\/a> (like us) and they must surely be runing the latest WordPress version. Are you still running an older WordPress version, upgrade now as <a href=\"https:\/\/www.quickonlinetips.com\/archives\/2007\/01\/security-update-everyone-knows-your-wordpress-version\/\">everyone knows your wordpress version<\/a>. Here are some <a href=\"https:\/\/www.quickonlinetips.com\/archives\/2007\/08\/3-new-wordpress-security-tips-i-learnt-from-matt-cutts\/\">3 WordPress security tips<\/a> I learnt from Matt Cutts and some <a href=\"https:\/\/www.quickonlinetips.com\/archives\/2009\/07\/wordpress-security-plugins\/\">top WordPress security plugins<\/a> you need to check out.<\/p>\n<p>This clearly exposed the vulnerability of top blogs to online threats and yet unfound security exploits. Its is very essential to <a href=\"https:\/\/www.quickonlinetips.com\/archives\/2009\/10\/backup-restore-wordpress-database\/\">keep backups<\/a> of your blog. TechCrunch has the best of tech support, security experts and network engineers, if they can get hacked, any blog can get hacked&#8230;<\/p>\n<p><strong>Update: <\/strong>It seems Techcrunch got hacked again and the hacker was annoyed with the interstitial ad. So was WordPress the cause? I read this comment by Mark Jacquith and am now more wary of using unsecure WordPress plugins.<\/p>\n<blockquote><p>They probably didn&#8217;t get &#8220;onto the server&#8221; in terms of getting shell access. More likely is an <strong>insecure plugin that allows PHP injection<\/strong>. Their wp-admin is HTTP Auth protected, so it&#8217;s unlikely that someone did this with a WordPress account. They&#8217;d have to know the HTTP Auth user\/pass as well.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>TechCrunch hacked! Its unbelivable but true. As I visited the top tech blog, I found the entire TechCrunch.com site is&#8230;<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","footnotes":""},"categories":[6,7],"tags":[],"class_list":["post-10814","post","type-post","status-publish","format-standard","hentry","category-blogging","category-security"],"_links":{"self":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts\/10814","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/comments?post=10814"}],"version-history":[{"count":0,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts\/10814\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/media?parent=10814"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/categories?post=10814"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/tags?post=10814"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}