My website was hacked. Any suggestions? (4 posts)

  1. Una Ola
    Posted 3 years ago #

    My website was hacked recently, and I wanted to see if you had any suggestions.

    I think they exploited the site using a security hole that was in one of the plugins that needed to be updated. When I found the damage, I immediately updated the plugins and WordPress, as well as, adding some more security features. The weird thing is they were able to change the Title, Description and Keyword meta tags in my Header, as well as, installing hidden text in the Body of the pages. This shows up in Google's cache for Una Ola. The compromise is clearly visible in the code, however, when you look at Una Ola (not Google's cached page), none of this is visible in the code. I'm baffled as to how they are able to get the Googlebot to view it as compromised in the SERP results without it showing in the actual page code.

    Let me know if you have any ideas or suggestions on how to resolve this.

  2. bcworkz
    Posted 3 years ago #

    They inserted script that delivers different content based on the user agent sending the request. Bots get certain content, browsers get different content.

    These hacks can be very sophisticated and difficult to clean out completely. You are best off to wipe everything, do a clean install, and restore wp-content and database from backup.

  3. David Choi
    Posted 3 years ago #

    Yes, re-installing everything will be a good idea. It's probably hidden using special characters to hide/show those codes. But you can also trying scanning your files using these plugins:


    it will usually display the files affected, so you can take actions (overwriting those files or manually remove them by editing them).

  4. praveenak
    Posted 3 years ago #

    Wordfence is an awesome plugin. Install in to protect ur new wordpress installation from further hacks.

Topic Closed

This topic has been closed to new replies.

About this Topic