My Blogs have Been Hacked in 2 ways today (4 posts)

  1. rileycentral
    Posted 6 years ago #

    3 of my blogs were hacked into today. I changed all the WordPress passwords and undid the minimal damage. One was an issue of the index.php file. That was easy to fix. The other was much more troubling. The Title of my blog had been changed. This of course is a database thing which is really freaking me out.

    I'd really like to know how many other people are getting hacked like this. I'd also like to know if WordPress.org is on this or not.

    I hope my information helps. Gonna go backup all my blogs now.

    Damien (aka rileycentral)

  2. figaro
    Posted 6 years ago #

    If they hacked a file on one blog and the database on another blog and both of those blogs are on the same server/account, then I would be looking at the server and/or account for the vulnerability.

  3. ClaytonJames
    Posted 6 years ago #

    I can't help but notice that 4 out of 6 of your domains with wordpress on them have extensive inventories in the plugins folders. Any chance that three of those four with the extensive number of plugins were on your hacked list? And if so, do they have any active plugins in common? More food for thought. Just another place to look I suppose.

  4. rileycentral
    Posted 6 years ago #

    @figaro: It's not the account because my sister-in-law got hers hacked first. So the new suspicion is maybe someone we know? But then my original question is even more important: Where are the holes? How could someone change or replace the index.php file? Or, change the title in the database?

    @ClaytonJames: Interesting heads up. I've been meaning to do away with needless plugins. I'll give that a shot as well.

    As for anyone else dealing with this, I found two great posts that give some pointers on defense against WordPress hackers:



    I always aim to make threads like these helpful for future visitors.

Topic Closed

This topic has been closed to new replies.

About this Topic