As I am still in the process of tweaking my sites, I am also still testing different looks or themes for each of them. Right now, my most problematic one is my food blog, but that’a a whole post on it’s own.

While searching for themes, I ran across this warning about Trojan Themes. According to the article,

I think the potential for abuse of this script is huge. I see it as a covert channel to setup Word Press enabled sites as thin zombies. The code being sent back to the server and eval’d could be a mailing script for spam or phishing.

If you have downloaded themes from WP Sphere or any other WordPress themes gallery, exercise caution and inspect the source code. If you are not code proficient, identify the original author and download the theme directly.

Beware: Download WordPress Themes only from the designer’s site or the official WordPress Themes site and even after you do, look at your headers and footers and recognize any additional script that may be hiding.

Related Content

Subscribe to the post comments feeds or Leave a trackback