Hacked WordPress with Popup Message
I came across a hacked WordPress Site today that was different to others I’ve seen before. The Site is hosted with Crazydomains here in Australia and a popup would appear every time any page on the Site was accessed. The popup made it impossible to continue using the browser. I tried the Site using Internet Explorer, Chrome, Firefox and Safari and all became inoperable once the popup appeared. The popup stated ‘hacked by Hmei7′.
Hmei7 is described as an ethical hacker on various Websites as he/she apparently highlights vulnerabilities without causing massive harm. He/She is said to have hacked many major corporation Websites such as IBM, Siemens, Toyota and many more. What interests me is that there aren’t many reports of WordPress Sites being hacked by Hmei7. As mentioned previously however, often what is described as a WordPress hack is actually caused by hosting vulnerabilities such as old versions of PHP.
By the way, there’s a good reason that I don’t go into details of the specifics of any hacked Website.
Feb 16, 2012 @ 07:54:32
I am sure many people are hacked every day, but what a coincidence for me as I have a site hosted on Crazys and indeed yesterday it was hacked by Hmei7, with the pop up you speak about, still unable to recover. If anybody does find a way around this please post.
cheers
Feb 16, 2012 @ 11:10:55
Hi John. I’ll send you an email
Apr 29, 2012 @ 14:59:08
I got hacked by Hmei7 too. My site is WP hosted by crazy domains… I still cant get back into my WP to access my site… Please help! It all started when i installed some new apps for my site. I submit my username/email address to get a new password but it says my username/email doesn’t exist
May 01, 2012 @ 03:31:30
Tom, I can assist for a fee. Please email me if you’re interested.
Feb 16, 2012 @ 09:58:59
Hi,
This has happened to my site today which is hosted by crazy domains. I would not say this hacking is ethical at all. We are a start up business about to launch on 1/3/12 and now I can’t even get into my WP to fix it.
Any suggestions?
Cheers,
Pete
Feb 16, 2012 @ 11:17:14
Hi Peter, I’ve sent you an email
Feb 16, 2012 @ 12:13:42
Hi,
My wordpress site is also hosted on crazy domains and it has also been hacked by hmei7 in the same way as you have described. Also can no longer access WP.
Would really appreciate any help
Feb 16, 2012 @ 13:00:21
Hi Zac, Check your email…
Feb 16, 2012 @ 12:20:59
Hi there,
I too have been hacked today by Hmei7 with the annoying popup. My site is also hosted with Crazy domains. This isn’t my first problem with crazy either (other problems not hack related) I too am wondering what I should do? I think this is the last straw with Crazy domains, let’s just say you get what you pay for….no security, no help…..nothing.
Feb 16, 2012 @ 12:59:45
Hi Dan, I’ve sent you an email.
Feb 16, 2012 @ 13:03:22
Hi, this has happened to a friend of mine (who incidentally-perhaps) is also with crazy domains. Any idea how hmei7 was able to do this? I haven’t had the chance to have a look yet but how should I go about fixing this?
Feb 16, 2012 @ 14:21:22
Hi Seb, an email is on its way ….
Feb 16, 2012 @ 16:11:31
Hi my website has also been hacked by the same thing. please send thru the fix gary
Feb 16, 2012 @ 17:10:37
Hi Carlo, I’ll send you an email soon.
Feb 16, 2012 @ 21:53:47
Me too:-(
Feb 16, 2012 @ 23:28:44
Jim,
Check your inbox …
Feb 16, 2012 @ 22:11:13
Went onto my site tonight and hmei7 has hacked the wordpress blog I have. I am also with crazy domains. If anyone knows how to fix this that would be great! Whoever this guy is he is horrible. This is such an uncool thing to do! I’m quite angry!
Feb 16, 2012 @ 23:27:39
Hey Cint, email on the way…
Feb 16, 2012 @ 22:38:36
Hi Gary, add me to the list of people hacked by this person. I tried calling you to discuss but got your voice mail. Are you able to send me the email you’ve sent the others? I’m on Crazy hosting also.
Feb 18, 2012 @ 22:03:53
Hi Gary. Same here. Hacked by hmei7 and with CracyDomains. Any help you can give me is GREATLY appreciated.
Feb 19, 2012 @ 20:29:01
Hi Cisco, tried to email but the email was returned undeliverable
Feb 20, 2012 @ 20:07:57
Sorry a letter missing on my email. Try it again please. Many thanks again.
Feb 21, 2012 @ 07:51:41
Hi Cisco. Go over to http://t.co/AKI9hnnL
Feb 19, 2012 @ 14:59:51
Hi Gary,
My website (hosted by Crazy) has also succumbed to Hmei7, which I found out about on Feb 17. I would appreciate any advice you can provide. Thanks.
Feb 19, 2012 @ 20:29:22
Hi Sarah, an email is on the way
Feb 21, 2012 @ 07:50:38
Hi Sarah. Take a look at http://t.co/AKI9hnnL
Feb 19, 2012 @ 16:53:38
Hi Gary,
hmei7 also hacked one of my clients websites, I wouldn’t call him an ethical hacker as this website is a blog of an 85 years old women who is a professional marathon runner a true Australian icon ,this website is also hosted on crazy domains which makes me think is there server secure at all? can you please send me an email on how to fix this?
Thanks,
Ilan
Feb 19, 2012 @ 20:31:02
Hi Ilan, I agree that reeking havok like this can’t be construed as ethical. I’ve emailed you
Feb 19, 2012 @ 17:07:05
Huh, me too. Also hosted with crazy domains.
What a mess, help?!
Feb 19, 2012 @ 20:31:26
Hi Emerson, email on the way …
Feb 20, 2012 @ 02:33:46
Hi Guys my wesite also got hacked by HMEI7 atleast 80000 other sites has been hacked today in SouthAfrica………..I have wordpress please help??
Feb 20, 2012 @ 18:49:37
Hi Ebrahim, see http://eckstein.id.au/10952/wordpress/steps-to-take-hacked/
Recover your Hmei7 Hacked WordPress | WordPress Specialist
Feb 20, 2012 @ 18:48:34
[...] that South African Websites have also been hacked by him/her. I wrote a Post last week regarding Crazydomains WordPress Websites that have been hacked by Hmei7. You’ll know that you’ve been hacked as you’ll get a popup message in your [...]
Mar 02, 2012 @ 12:46:51
Hi Guys my wesite also got hacked by HMEI7 atleast 80000 other sites has been hacked today in SouthAfrica………..I have wordpress please help??
Mar 02, 2012 @ 14:11:04
Hi Rafael, take a look at http://eckstein.id.au/10952/wordpress/steps-to-take-hacked/ for some hints on how to recover your Website
Mar 03, 2012 @ 22:10:52
Hi Gary. I have the same problem as everyone else. I’ve been hacked by Hmei7 and am with crazy domains. Can you also send me an email? thanks x
Mar 04, 2012 @ 20:14:20
Hi Christina. See http://eckstein.id.au/10952/wordpress/steps-to-take-hacked/
Mar 16, 2012 @ 11:46:04
Hello Gary, my joomla site just got hacked by Hmei7. Any advice to restore? Thanks.
Mar 16, 2012 @ 12:49:57
Hi Mav, Unfortunately I have no experience with Joomla so can’t provide any potential resolutions
Apr 05, 2012 @ 17:54:36
Hi Gary.. Today my website got hacked. I try to open my cPanel but its password not working. May be hackers changed its password. How can i restore it .Please suggest me.
Apr 05, 2012 @ 18:33:07
Hi Chandan, I recommend contacting your Host to reset the password.