Hi WP Community
I had a clients wp websites hacked there . Strange one in that the only seemed to add a index.html file to the root off the folder but the rest of the site seems ok .
ftp log shows no access but server log shows access from foreign dodgy ip no's but only goes back a few days.
Im going to restore a clean backup and change passwords but was wondering how they added this rogue file and how it can be stoped in future .
can you also recommend any security plugins.
also the police are now involved and would like to track and prosecute the hacker as they have done a few sites and this is a criminal offence , so its great to see this taken seriously.
Is there anyway I can help them from a wordpress angle before resotring the clean backup by tracing IP's , logs or something