Our website got hacked when upgraded to woredpress 3.9.4 | WordPress.org

cplygon
(@cplygon)

8 years, 11 months ago

Hi,
Not sure what version we were using.
Got an email on the 22/4/15 stating that our website was automatically updated to wordpress 3.9.4. After this was upgraded, our website got hacked and got redirected to a Palestinian website.

Had to get the hosting company to completely pull down the site. So all the wording and the setup we did is now gone, and have to start from scratch.

Just wondering if anyone knows who would have upgraded this automatically? Did someone from wordpress or would have the hosting company did this automatically?

Any ideas would be helpful.
Also, how to stop this from happening again.

We have another website that is running wordpress version 4, and to upgrade to 4.2.1. If I click the update now, will this change anything?

Viewing 1 replies (of 1 total)

derweili
(@h3p315t05)

8 years, 11 months ago

WordPress itself has a auto update funtion. But this should not cause the problem. Maybe you used a infected Plugin or Theme.

you should inform yourself about WordPress security.
There are many blogs who already wrote about this topic. So try a search on google.
Only a few things you can do:
Don’t use a user called admin.
Use strong passwords.
Secure your Backend via htaccess or prevent it from Brute Force Attacks.

You can use a plugin for that.
E.g. https://wordpress.org/plugins/better-wp-security/

Viewing 1 replies (of 1 total)

The topic ‘Our website got hacked when upgraded to woredpress 3.9.4’ is closed to new replies.

Tags

hacked

In: Fixing WordPress
1 reply
2 participants
Last reply from: derweili
Last activity: 8 years, 11 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics