Found this article from Derek Punsalan’s blog 5ThirtyOne.
Templates Browser dot com is collecting WordPress & Joomla public themes and modifying them by inserting hidden spam or malware links that can compromise the end user then re-distributing it in their site. These spam and malware links are inserted in a functions.php file that comes with each theme download.
Derek’s popular WordPress theme 5ThirtyOne V2 is one of the themes being re-distributed by Templates Browser. Other themes in their list include the Fresh theme by iLemoned and the NotSo Fresh theme which I previously used here in my blog.
If you’ve recently downloaded a WordPress or Joomla theme from Templates browser, make sure you don’t use it and download a clean version from the theme’s original source. That’s why it’s always a good practice to download themes from reliable sources or directly from the author’s homepage or theme homepage.
Please help spread the word so other Joomla and WordPress theme users would be aware of this. Visit Derek’s post and Digg it.
Anyone of you guys happen to download or used an infected theme from Templates Browser or other malicious websites? If not, where do you usually get your WordPress themes from? Please share your thoughts by leaving a comment below.