I came across a hacked WordPress Site today that was different to others I’ve seen before. The Site is hosted with Crazydomains here in Australia and a popup would appear every time any page on the Site was accessed. The popup made it impossible to continue using the browser. I tried the Site using Internet Explorer, Chrome, Firefox and Safari and all became inoperable once the popup appeared. The popup stated ‘hacked by Hmei7’.
Hmei7 is described as an ethical hacker on various Websites as he/she apparently highlights vulnerabilities without causing massive harm. He/She is said to have hacked many major corporation Websites such as IBM, Siemens, Toyota and many more. What interests me is that there aren’t many reports of WordPress Sites being hacked by Hmei7. As mentioned previously however, often what is described as a WordPress hack is actually caused by hosting vulnerabilities such as old versions of PHP.
By the way, there’s a good reason that I don’t go into details of the specifics of any hacked Website.