Support » Everything else WordPress » Site got hacked with iframe injections

  • I am a computer tech and one of my clients site got hacked about a month ago. I removed the added code, isntalled the WP Security Scan and the Word Press Exploit Scanner. I made all recommendations.

    Then one month later the site got hacked again. So I then restored the files that were changed.

    So this time I have changed all the passwords…

    Also, a third party company that is new to wordpress created a theme. I dont know how secure the theme is, but the company that made it would prefer he just use straight html, as he doesnt use the blogging features, the dentist just likes how you can add pictures, etc.

    Anyone want to take a stab at looking at his theme? Before wordpress is uninstalled. If it happens again he may just convert. All plugins are upgraded, etc….

    Is this a known problem with WordPress 2.7.1?????

    Also, the root directory permissions is 705 instead of 755 and I dont think godaddy will allow me to change it!

    Regards!

    -Justin

Viewing 1 replies (of 1 total)
  • Hi –

    I am having a similar problem now with an iframe hack attack. I don’t think it is related to WP version, but that it is some kind of program that gains access to your FTP password, then places iframe code in all files named index. Have a look at the following thread — there are references to a couple of other threads there that could help you, and I could use your help in reporting what you learn. What was in your iFrame code?

    See: http://wordpress.org/support/topic/281767?
    – Scott

Viewing 1 replies (of 1 total)
  • The topic ‘Site got hacked with iframe injections’ is closed to new replies.