I just been hacked by a hacker named "missoum said", his email is firstname.lastname@example.org and here is how i could see it.
First of all I received an email from WordPress telling me that I had a new user registered. Checking it in the admin panel, I could see that he was registered as an "Administrator"
I then received an email from "Missoum Özil" (email email@example.com) saying:
"Si vous ne me payez pas 20 $ €, va fermer votre site If you do not pay me $ 20 €, i will close your site shell of hack http://www.mydomainname.com/madspotshell.php"
Checking on my FTP where I host 3 differents wordpress blogs I could see that he had uploaded 2 files on the first blog: the file madspotshell.php and a file DZ.txt where it's written "Hackek By eXploit-1307"
And on the 2 other blogs I could only find the DZ.txt file
How can I do to protect myself? Is he dangerous? How could he do it? What are the security tips you advise me? It seems that he's waiting for me to pay before killing my sites. Has anyone experimented the same situation ?
many thanx for your help, I'm desperate