[resolved] Exploit? (3 posts)

  1. windyweather
    Posted 2 years ago #

    I received the following from my hosting service.
    Does this indicate that somehow a bad guy breached WordPress security?
    Of course I am automatically updating my site and using the latest WP.


    Hello xxx,
    Please note that on a further check of your account we noticed the following exploited scripts:
    The above scripts are now disabled to avoid any other issues. Please see an example of exploited content:
    <?php /*45637*/ @error_reporting(0); @eval(base64_decode("aWYg [code moderated] =")); /*45637*/ ?>
  2. Mark Ratledge
    Forum Moderator
    Posted 2 years ago #

    Looks likes you got hacked.

    Work your way through these resources and follow all instructions to completely clean your site or you may be hacked again. See FAQ: My site was hacked « WordPress Codex and How to completely clean your hacked wordpress installation and How to find a backdoor in a hacked WordPress and Hardening WordPress « WordPress Codex.

    Change all passwords. Scan your own PC. Use http://sitecheck.sucuri.net/ before and after.

    Tell your web host you got hacked; and consider changing to a more secure host: Recommended WordPress Web Hosting

    If you can't do the work yourself, consider looking for a reputable person to fix it correctly on freelancing sites such as Elance. (It's not a good idea to respond to unsolicited emails from forum users offering to work for you.)

  3. windyweather
    Posted 2 years ago #

    You know, it might be time to move to another hosting service.
    I better never get a message like this from Squarespace or Weebly.
    I know that I'm going to cause a flame storm by saying this.
    But just like the steam engine was better than the horse cart, maybe this new model of website hosting is better than the older one.
    I'll have to think about it.
    - ww

Topic Closed

This topic has been closed to new replies.

About this Topic