infolinks injection – site hacked

big_s
(@big_s)

10 years, 9 months ago

Hi,

We are using a genesis child theme on the latest wp. All plugins, theme files and core are up to date. We are constantly being hacked and infolinks being injected into the site – small snippets of javascript that introduce the infolinks are being placed in theme files randomly it seems.

Has anyone else experienced anything like this that may be able to give us some idea how to stop it short of disabling all plugins and building the system up from scratch one plugin at a time. The theme is believed solid as a premium theme from studiopress.

Any information or advice most welcome.

Thanks.

Viewing 5 replies - 1 through 5 (of 5 total)

Pioneer Web Design
(@swansonphotos)

10 years, 9 months ago

If your site has been hacked, and continues to be hacked, you must discover how the site was hacked and fix that or this will not end.

You actually not be able to, but you do need to review all this:

http://codex.wordpress.org/FAQ_My_site_was_hacked
http://wordpress.org/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

Anything less will probably result in the hacker walking straight back into your site again.

Additional Resources:
Hardening WordPress
http://sitecheck.sucuri.net/scanner/
http://www.unmaskparasites.com/
http://blog.sucuri.net/2012/03/wordpress-understanding-its-true-vulnerability.html

The Hack Repair Guy
(@tvcnet)

10 years, 9 months ago

Is a relatively common occurrence, and can be controlled through systematic steps in being proactive security wise:

First.
Try focusing on entry points.
Restrict access, change passwords, etc.

Second.
Systematically remove and replace components with virgin copies.

These two steps alone may lick the hacker and block them from compromising your account further.

Thread Starter big_s
(@big_s)

10 years, 9 months ago

Sure, these are all due diligence kind of activities but I was hoping that someone may have specific experience with the same problem and found a way to prevent it as all our efforts along the lines noted so far have failed.

Thread Starter big_s
(@big_s)

10 years, 9 months ago

Sure, these are all due diligence activites that we have already conducted. I was hoping that someone may have experienced the same problem and is able to shed light on how to stop it as all our efforts have so far failed.

Thread Starter big_s
(@big_s)

10 years, 9 months ago

Sure, these are all due diligence activites that we have already conducted. I was hoping that someone may have experienced the same problem and is able to shed light on how to stop it as all our efforts have so far failed.

Thanks.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘infolinks injection – site hacked’ is closed to new replies.

infolinks injection – site hacked

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics