Trend Micro Facebook TrendLabs Twitter Malware Blog RSS Feed You Tube - Trend Micro
Search our blog:

  • Recent Posts

  • Calendar

    December 2014
    S M T W T F S
    « Nov    
     123456
    78910111213
    14151617181920
    21222324252627
    28293031  
  • Email Subscription

  • About Us

    The next time you go on a hunting spree for a blog theme, make sure you’re downloading from a trusted site or you may want to rethink giving your blog that oomph factor especially when you’re using WordPress or Joomla!.

    A concerned blogger reported that a site named templatesbrowser.com has been repackaging blog themes to insert unwanted phishing code that could end up as a link spam. How does it go about doing this? It uses a PHP code in its template that can retrieve HTML codes like the one below, which are usually hidden from the user by setting the display style to None:

    <div id=”copyl” style=”display: none;”> <a href=”http://www.casino[blocked]”>casino en ligne</a></div>


    This tactic is used to increase the hits on a certain page therefore elevating its rank when searched. Note, however, that once marked by certain search engines as having this kind of code, the blog can be removed from query results altogether. What is more worrying though, is that this technique can be used by malware as a means to proliferate.

    So when revamping your blog theme, always be on the lookout for theme-generator sites that may have ulterior (possibly malicious) motives and download only blog templates from trusted sources.





    Share this article
    Get the latest on malware protection from TrendLabs
    Email this story to a friend   Technorati   NewsVine   MySpace   Google   Live   del.icio.us   StumbleUpon






     

    © Copyright 2013 Trend Micro Inc. All rights reserved. Legal Notice