Multiple WP sites hacked, help please
-
Hello, Two weeks ago a client contacted me because his WordPress blog and web site were hacked. The blog was changed to point elsewhere and while on the site, they replaced the index.html page with their own, with links to various places I couldn’t read as they were in Arabic?
Since then four other domains on the server with WordPress installs have been hacked. Since the only domains being hacked contain WordPress blogs, I am assuming at this point that WP is being exploited to allow the hacker access to the full domain. Aside from altering or destroying the blog, they are also deleting and changing other parts of the domains. In one case, two years of work was lost in a family tree program they totally deleted from the client’s domain.
The clients are very upset and of course blame me, but not knowing what can be done, I don’t know where the blame should fall. I only know that what is common to all of the affected domains is WordPress blogs.
What in WordPress would allow a hacker into the domain structure, affecting things beyond just the WordPress install?
What can be done to protect the server and the client’s domains to prevent more losses from occurring?
All of the domains were running the latest version 3.04. I have since added “Secure WordPress” plug-in but don’t know what else to do.
If it matters, it is a cPanel server. Some of the “trash” left behind referred to a sited called Zone-H, supposedly a hacker haven.
Any help would be appreciated.
Thanks!
- The topic ‘Multiple WP sites hacked, help please’ is closed to new replies.