My site was hacked… | WordPress.org

vireax
(@vireax)

13 years, 6 months ago

by sami fakhfakh<br>hacked

I use WordPress 3.0.1 multisite. I got this message at the front page. An index.php file was changed at the root folder in public_html as shown above. I deleted and uploaded the old file, then everything come back to normal.

Is this the security risk by Bluehost, by WordPress, or am I not good enough to secure my site?

Then, how to avoid this happen again?

Viewing 5 replies - 1 through 5 (of 5 total)

esmi
(@esmi)

13 years, 6 months ago

http://codex.wordpress.org/FAQ_My_site_was_hacked
http://wordpress.org/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottopress.com/2009/hacked-wordpress-backdoors/

Thread Starter vireax
(@vireax)

13 years, 6 months ago

Sure, I followed WordPress for 3 years. But I still don’t know how can someone upload a new index.php file to my root folder. Should I inform Bluehost? Do you know the technique how they can do this?

govpatel
(@govpatel)

13 years, 6 months ago

Most of time on shared server there is a unsecured website and if that gets infected it will change all index.php on that shared server has happened to me.

So I keep my wordpress updated to latest version.

Thread Starter vireax
(@vireax)

13 years, 6 months ago

Thanks, I’ll take care seriously with future installations.

Mark Ratledge
(@songdogtech)

13 years, 6 months ago

By nature, shared hosting is always more vulnerable than higher grades. See Hardening WordPress « WordPress Codex

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘My site was hacked…’ is closed to new replies.

Tags

hacked

In: Fixing WordPress
5 replies
4 participants
Last reply from: Mark Ratledge
Last activity: 13 years, 6 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics