Support » Everything else WordPress » [Security] Website Scanned For Various Style.css?

  • I’ve been getting all kinds of vulnerability probes as of late, but one that sticks out to me is repeated attempts to find style.css for a number of themes that never existed on the site.

    Normally I take note of the IP, it’s location and blacklist it, but after doing a reverse lookup I’m seeing that the last two cases are coming from hosted servers (websitewelcome.com, a hostgator reseller and hostpapa.com). I contacted both, Hostgator took care of it and I just emailed hostpapa after seeing that’s where it came from. So either users are getting infected, or hackers are buying cheap hosting accounts to attack others.

    What can I do to make sure my style.css’es aren’t compromised? It doesn’t matter if the theme editor can’t edit it anymore.

Viewing 1 replies (of 1 total)
  • You could ensure that permissions on all files in wp-content/themes are 644 or below (say 604).

Viewing 1 replies (of 1 total)
  • The topic ‘[Security] Website Scanned For Various Style.css?’ is closed to new replies.