Support » Fixing WordPress » Has my site been hacked?

  • Resolved mariemerry

    (@mariemerry)


    Hi,

    I tried to login to my site through the wp-admin access and got a white page with Denied. Later that evening, I tried again and I got the following error message:

    “Due to sustained attacks on WordPress Login pages we have been forced to take extra security measures. Please contact support to gain access.”

    I don’t have access to the client support area on the hosting platform as this is managed by a third party, but do have access to the cPanel. The hosting providers were unable to help due to a ticket not being raised from the client login area.

    I later checked and the following error message was then shown:
    “Due to sustained attacks on WordPress Login pages we have been forced to take extra security measures. Please contact support.”

    Then this morning there is a 404 site error page displaying.

    I’ve checked my backup files and new files were created last night at 11pm, so I’m reluctant to restore backup files.

    Please can somebody offer some support?

    • This topic was modified 1 month ago by  Jan Dembowski.
    • This topic was modified 1 month ago by  Jan Dembowski. Reason: Moved to Fixing WordPress, this is not an Everything else WordPress topic
Viewing 4 replies - 1 through 4 (of 4 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    I don’t have access to the client support area on the hosting platform as this is managed by a third party, but do have access to the cPanel. The hosting providers were unable to help due to a ticket not being raised from the client login area.

    That’s a problem as this is not a WordPress issue, you need to get a hold of your host provider to solve this.

    dogmatix72

    (@dogmatix72)

    mariemerry ask your hosting providers to allow your IP address to access the wp-admin page.

    roirizla

    (@roirizla)

    Once done, install a plugin like: wps-hide-login to hide your login page.
    Apparently there’s a large increase in targeted WordPress login brute-force/DDOS attacks so hosts take precautionary measures.

    mariemerry

    (@mariemerry)

    Hi Both,

    I have resolved the issue. I added code to the htaccess file to allow my IP address and then installed WPS Hide Login to change the login URL to the site.

    Many thanks for your help.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.