WordPress.com Forums » Topic: Content and Feed Theft of my Wordpress Blog by a Wordpress Blog

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Mon, 21 Apr 2008 00:50:52 +0000

Every time you visit a website, your browser (and your system) could be attacked by malicious software. This is a normal risk, and you have to secure your system to avoid potential security issus.

It is a good idea to turn off javascript, and to use a more secure browser. I use firefox with some special plugins: i.e. noscript and siteadvisor.

Also, i use linux as my main operating system, patched to the latest actual level.

The "bad" site tries to install trojan-software. But if you have a well configured system, and didn't install any software from that site, you will not run in problems.

But it is a good hint, not to visit such bad sites too often ;-)

And always backup your system.

dissfunktional on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

dissfunktional — Mon, 21 Apr 2008 00:15:42 +0000

how does it work exactly, did a user just going to the cinderella site cause a problem? I read the link you provided, about how they steal identities, I don't understand how they do it though.

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Mon, 21 Apr 2008 00:03:58 +0000

I'm glad that this issue could be resolved so easily.
Thanks to Ulli, that he has taken such immediate reaction.

In the comments above, i posted a link to a special security-report. If you read this report, you will see that the misterious included "banner" points to a server which is part of the Russian Business Networks.

Really bad guys.

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Sun, 20 Apr 2008 19:11:38 +0000

Thanks Ulli. Your response and explanation combined with Princo's actions were those I had hoped to get from professionals.

kortenkamp on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

kortenkamp — Sun, 20 Apr 2008 07:31:11 +0000

Cohn,

I am the webmaster of Cinderella.de. As Princo pointed out already our website was hacked and was hosting a split until yesterday, when I received a mail message about this issue (I assume that this was sent by Princo).

Because our site is fairly high ranked in Google the results show up earlier than those of your own blog. I contacted google and asked them to remove the pages from their index and caches.

I am sorry that this happened to your content. If this ever happens again you should notify the webmaster of the offending site immediately. A simple email usually suffices to shut down the splog and also helps to fix security issues at the hacked sites.

Ulli

pkayski on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

pkayski — Sun, 20 Apr 2008 04:12:47 +0000

Haha gotta love it! If only all sploggers crashed that easily!

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sun, 20 Apr 2008 03:55:27 +0000

That is awesome. You should be proud of yourself.

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Sun, 20 Apr 2008 03:52:09 +0000

His non hosted WordPress blog was hacked and his feed fed the copied content from my blog to Google's blog and search results... until when? Until he was alerted and "unhacked" his blog? How? By whom? I can't imagine the average blog owner would have that quick a turnaround time.

Who's action caused his feed with my content to be deleted from search results? His? WordPress'?
Google?

Why did a blog search for Earthquake Rocks Google Too still show his blog instead of mine up until several hours ago?

On my blog, I have screen shots of his blog results in Google blog and search results published first with my content - not mine.

Also, I didn't contact him. Princo said he was going to contact him the next day but all of the aforementioned changes occurred within several hours. All I did was write the post...

dissfunktional on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

dissfunktional — Sat, 19 Apr 2008 13:50:35 +0000

the owner of the site also left a thank you comment on cohn's blog for bringing it to his attention, and updating him on the issue. very nice.

http://cohn.wordpress.com/2008/04/18/hot-news-blog-content-theft-httpcinderelladewhelpnews/#comments

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Sat, 19 Apr 2008 13:40:08 +0000

I now got a mail from the owner of "cinderella.de". His site was compromised by a hacker. He now has deleted the splog, and will take further actions in securing his website.

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sat, 19 Apr 2008 09:02:02 +0000

They don't care about publicity. They don't even care if anyone reads the posts they steal. They literally ONLY want the hit. Defrost Indoors had a post stolen complete with hotlinked picture. She took the picture down and replaced it with a picture of a dunce picking his nose with the words "This post was stolen from the great blog http://bridlepath.wordpress.com" and it still took them like a week to notice and take it down.

oceallaigh on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

oceallaigh — Sat, 19 Apr 2008 08:55:48 +0000

Raincoaster:

they often scrape that, too.

Bad pub for them. Good pub for me. Assuming the content is any good, that is ...

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sat, 19 Apr 2008 08:37:46 +0000

It can't hurt. But ironically, they often scrape that, too.

oceallaigh on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

oceallaigh — Sat, 19 Apr 2008 08:33:52 +0000

I typically put a copyright notice at the end of every post. Maybe I should put it at the beginning ...

thesacredpath on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

thesacredpath — Sat, 19 Apr 2008 05:13:40 +0000

One option is to go to settings > reading and set the number of posts to show in your feed to a low number, say 2. The also set it so that your feed is summary and not full. This will mean that all they will get is a partial sentence or two instead of the entire post.

jlosh on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

jlosh — Sat, 19 Apr 2008 05:11:34 +0000

There is an option in the dashboard regarding adding your site to search engines
(http://yoursite.wordpress.com/wp-admin/options-privacy.php)
-- But this might not help you out regarding someone snatching your feeds.

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sat, 19 Apr 2008 04:53:39 +0000

A hacked feed needs staff intervention: a copied feed needs blogger action. That's why it matters.

pkayski on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

pkayski — Sat, 19 Apr 2008 04:40:51 +0000

Cohn (and anyone else in a similar situation):

I would like to suggest (and this is my suggestion so you don't have to take it) in that instead of contacting the owner of the blog, I recomend you just contacting the host/domain providers/IP/etc and asking them to shut the site down for the content they have stolen from you. I see it as fastforwarding on the innevitable outcome (i.e. they will ignore you, so you have to talk to the providers of the domain/ip/host anyway)

Hope you get the mofo's shut down.
Cheers!

riraito on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

riraito — Sat, 19 Apr 2008 04:33:32 +0000

guys,what's there to argue about anyway?

the bottom-line is his blog contents got stolen by another blogger isnt it?

does compromised and copied even matter? god...

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sat, 19 Apr 2008 04:00:04 +0000

"Copied." The word compromised indicates some kind of hack, whereas this was more or less a straightforward copy/paste.

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Sat, 19 Apr 2008 03:35:02 +0000

It may not have been the right word but it got the job done.

What term might you have suggested?

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Sat, 19 Apr 2008 03:23:06 +0000

I'm not going to argue with you about the definition of the word "Compromised."

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Sat, 19 Apr 2008 03:21:56 +0000

Raincoaster compromised ie., their site:
1.) Took my content
2). Put it on its site
3). Fed it as its own to both search and blog results
4). Distributed my content as its own both through search and blog results before it was recognized as mine.
5). By its method, denied my site's ability to then have it distributed.

This transpired over a three and a half hour period and has since been resolved by WordPress, the WordPress Community and Google.

Thanks!

Tim Cohn

I have posted some screen shots here:
http://cohn.wordpress.com/2008/04/18/stop-blog-content-theft-splagiarism/

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Fri, 18 Apr 2008 23:54:46 +0000

I sent the complaints to the owner and the hoster. Tomorrow i make a phone call to the owner.
Be sure, afterwards this splog wouldn't exist anymore.

dissfunktional on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

dissfunktional — Fri, 18 Apr 2008 23:35:16 +0000

That 'banner' in the top right ran something when I went to the site. Yes, something is going on and I'm not going back; I'm actually going to clean my computer after I make this comment.

I made a quick screenshot while I was there so you can see it and not go to the cinderella site:

http://farm3.static.flickr.com/2220/2424331788_f07056c295_o.jpg

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Fri, 18 Apr 2008 22:52:42 +0000

To make it clear: i think the website cinderella.de is beeing hacked.

raincoaster on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

raincoaster — Fri, 18 Apr 2008 22:50:59 +0000

Sploggers subscribe to tag feeds, typically. What do you mean by "compromised?" Your feed is going out as usual; it has not been hacked. It's just that someone is taking it and doing something illegal with it.

princo on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

princo — Fri, 18 Apr 2008 22:42:51 +0000

Seems for me, that the account of the website was hacked. I'll send a complaint to the hoster, and contact the owner of the site tomorrow.

In the upper right corner of the "blog", there is an "ad"-banner, linking to a website with VERY bad behaviour.

You can find a report about the "bad" site here:
http://www.siteadvisor.com/sites/spyshredderscanner.com

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Fri, 18 Apr 2008 22:29:56 +0000

In order to eliminate the feed as the source, I will write this post to see if the splog is grabbing my feed specifically or if it is grabbing keyword specific posts.

Only at that point, will it become clear what further options I may have.

My blog entry title will be: Hot news! Blog Content Theft http://cinderella.de/whelp/news/
The contents of my post will be from this thread along with screen shots.

Here it goes!

cohn on "Content and Feed Theft of my WordPress Blog by a WordPress Blog"

cohn — Fri, 18 Apr 2008 22:23:01 +0000

OK. Thank you both.

It too has been a long day over here, I just learned I had another site receive an SQL Injection hack which has created a much longer list of problems to deal with.

As a result, I may not have communicated my thoughts as clearly as I had planned.

Raincoaster, I understand your explanation and I think it makes the most sense.

However, if the splog site has grabbed my content and is now being placed in Google blog results and now Google's search results, I would argue my feed has been compromised because I am no longer being credited as the post's author.

http://www.google.com/search?source=ig&hl=en&rlz=1G1GGLQ_ENUS270&q=earthquake+rocks+google+too&btnG=Google+Search

Would you not agree?

Theft of content is one thing. Theft of its authorship is another.