The Support Forums will be in read-only mode for a scheduled maintenance window on 01 September 2016 14:00 UTC - 20:00 UTC. More information.

[resolved] My website has been hacked (more than once) (5 posts)

  1. Leandro
    Posted 3 years ago #


    My website was hacked a few weeks ago so I did some research and secured my installation with all the information I read on the web (change passwords, table prefix, secret keys, changed the admin user ID and username, block themes from being edited, etc). I also installed Better WB Security and did a lot of work on the htaccess file.

    It all went fine for a few weeks, but today my website was hacked again.
    Checking all the websites on my hosting provider, I noticed lots of them are hacked (I counted more than 15). Also, emails from my hosting provider are now being marked as spam by Google.

    So I think this is maybe a hosting problem? I mean, what else can I change on my installation to make it more secure? I did a lot of things to it.

    I'm using WordPress 3.5.2 and these plugins:
    - Akismet
    - All in one SEO pack
    - Better WP Security
    - Google Sitemap Generator
    - Jetpack
    - No Right Click Images
    - Post Types Order
    - prettyPhoto Media

    I'm also using a free theme called Touchfolio. I contacted the developer to check if he is aware of vulnerabilities on his theme, but he never replied back. I guess that's what you get when you use free themes, no support.

    Right now I have my website password protected because I have no idea how they hacked it and I don't know how to protect it from been hacked again. What I know is that they only changed the index.php file.

    Any ideas?

    Thank you

  2. WPyogi
    Forum Moderator
    Posted 3 years ago #

  3. Leandro
    Posted 3 years ago #

    Yes, I did. After the first time they hacked me I replaced all my files and the database with a non-hacked backup and fresh WordPress files.

    The hosting provider wasn't very helpful. This was their response:

    Update all your plugins and themes and delete the ones you are not using.

    I did that and more weeks ago.

  4. The Hack Repair Guy
    Posted 3 years ago #

    This sort of situation is generally not too hard to resolve.

    First, check your computer(s) for malware / antiviruses
    Second, change all of your related passwords (email, ftp, hosting, WP dashboard, etc.)
    Third, click Updates->Reinstall now button, to overwrite your core files.
    Fourth, change your index.php permissions to 444 since that's being modified first (just to see what happens).

    These steps might actual stop the attack cold.

  5. Leandro
    Posted 3 years ago #

    Thanks for the suggestions, guys. But I already did all that the first time they attacked me. This is why I think it's a hosting problem, but I wanted to be sure so I posted my problem here.

    Of course, I changed all my passwords and secret keys again and fortunately they haven't hacked me again... for now :P

Topic Closed

This topic has been closed to new replies.

About this Topic