More Trojan/Zombie/Botnet WordPress Spam Blogs
The zombie/trojan spam blogs are at it again tonight. I just caught another 5k stories published to Tailrank because of this recent blog spam torrent.
There is clearly some unknown vulnerability that he must be exploiting. I’ve only done sample based auditing of about 20% of the links and they’re nearly 100% WordPress blogs ranging from versions 1.5-2.x.
What’s the most efficient way to alert 2-300 WordPress bloggers that they’ve been owned?
I could write an automated script to post a comment to their most recent blog entry. Of course I wouldn’t be able to get through the captcha barrier. I could create a dedicated blog post linking to every single blog and hope they check with Technorati or Google Blog Search for their mentions.
That might actually be a good idea. I think I might do that tomorrow. It would be nice to re-enable these blogs at some point.
This is a good reason to subscribe to Spinn3r btw. If you need a crawler it doesn’t make a lot of sense to have your Engineering staff constantly chase down spam. Let us do it for you.