WordPress.org

Ready to get started?Download WordPress

Forums

Website hacked with hedefsite tool (9 posts)

  1. tommix
    Member
    Posted 2 years ago #

    Today i started to move my website to other host and noticed that all my downloads (i sell digital goods) was compressed to one file named hedefsite.com.tar.gz I started to search for it and i found that this is hacking tool http://pastebin.com/N9bgjWTP

    I use strong passwords, and admin username is changed to other name for security reasons. I don't use any of in script mentioned wp plugins. So are we safe from thsi tool in newest wp version?

    PS. in my website there also was left old scripts from eshop openCart, hackers maybe used it not WP, but i want to be sure that wordpress nows about this tool and we are safe.

  2. esmi
    Forum Moderator
    Posted 2 years ago #

  3. tommix
    Member
    Posted 2 years ago #

    How this will secure wordpress? I can bet 1000000$ that all those topics are well known for those who creates, edits WP so all things should already be implemented in WP, so i think reading this won't help.

    And anyway i use all of mentioned security tips via .htaccess and other ways, but as practice shows -it doesn't help.

    PS but thanks for links, few of them not bad at all :)

  4. esmi
    Forum Moderator
    Posted 2 years ago #

    Those links are intended to help you remove all traces of the hack from your site. This is not a WordPress issue, per se, but a problem on your site. Only you can fix it.

  5. tommix
    Member
    Posted 2 years ago #

    My WP is clean as i can find, as i mentioned the haker maybe used my left older script to get access. Maybe he used backup plugin so gain access to compressing tool, cause otherwise how can he/she compress files? password hack is almost impossible all of them are like &*7}"if]+@!~ and so on :)

  6. esmi
    Forum Moderator
    Posted 2 years ago #

    1. You still have a back door on your site.
    2. You are using an insecure theme or plugin.
    3. You're using a host with poor security,

  7. adpawl
    Member
    Posted 2 years ago #

    4. You have a back door on your PC (FTP password was stolen)

  8. esmi
    Forum Moderator
    Posted 2 years ago #

    Agreed but if the OP has implemented all of the tips suggested in the links above, he will have already have scanned his machine, and changed all passwords. It's in the very first link :-)

  9. tommix
    Member
    Posted 2 years ago #

    i even changed my hosting provider :D

    and my password is not stolen, i have dozens of webpages so all they would be hacked :)

Topic Closed

This topic has been closed to new replies.

About this Topic