37Stars
Member
Posted 2 years ago #
My site was hacked by some joker named Pinky Hacker. The index.php of the Tarski theme contained the hacker's information. I'm not sure of how he/she gained entry. So any ideas and suggestions would be very helpful.
The admin record was changed. The user_login and user_email fields did not contain my information as I'm sure the user_pass field was changed also.
Tarski Theme
Plugins
Add LightBox & Title 1.4
Akismet 2.2.7
All in One SEO Pack 1.6.10.2
DotNetKicks 1.0
Google Analytics for WordPress 3.2.5
Google XML Sitemaps 3.2.2
I Love Social Bookmarking 0.3.1 (not activated)
jQuery Lightbox 0.9
Regenerate Thumbnails 2.0.2 (not activated)
Sidebar Login 2.2.9
Social Bookmarking RELOADED 3.14
Syntax Highlighter Evolved 2.3.8
WordPress.com Stats 1.6.2
WP-PageNavi 2.61
WP-SpamFree 2.1.1.2
WP Super Cache 0.9.9
casben79
Member
Posted 2 years ago #
did you delete the install.php or attempt to secure your blog in any way? It is an unfortunate fact that wordpress is highly targeted by hackers so it is very difficult to keep hackers out, rest assured if some who really knows what they are doing wants in to your blog, there is very little you can do to stop them, but 99% of hacks can be stopped by following the advice on any of the posts found on google, here is one i think is pretty good.
http://www.catswhocode.com/blog/10-easy-ways-to-secure-your-wordpress-blog
37Stars
Member
Posted 2 years ago #
RVoodoo, thanks for the links. They have been very helpful.
Casben79, I had done a few of these, but not all of them.
I'm still curious to know how they got it. I suspect that I am still somewhat vulnerable even with having made many of these changes.
ultimately, it can come doen to your host. For instance if you are on a shared server, and someone else on your server is insecure, you are vulnerable.
37Stars
Member
Posted 2 years ago #
I got hacked again. I have the log files, but I cannot read them. I can supply the log file if someone can read it and tell me how they got into the site.
Thanks
