Wordfence Security
[resolved] Website was hacked today 7-7-12 at 10:45 AM (4 posts)

  1. himinc
    Posted 4 years ago #

    Hello, I made the setings stronger by reducing the numer of failed intents to login, and augmenting to 3 and 4 from the sugested 6, and 10
    but today my website was hacked with no warning from your system, what good makes notifying that the site WAS hacked? Yes I do Know I had the regular key and not the premium for testing poprpuses but it is suposed to work and at least inform of the failed attempts before the succesfull one happens, what it is your warranty for protection with the premium keys? is there any or not?


  2. Wordfence
    Plugin Author

    Posted 4 years ago #


    I'm sorry to hear your site was hacked and I'd like to help. Please email me at mark@wordfence.com and hopefully we can figure out how the hacker gained access and try to prevent this from reoccurring in future.

    For other folks who arrive at this post via Google I thought I'd post a few common causes: Old themes or plugins that contain vulnerabilities like timthumb. Other applications outside the WordPress installation that may be vulnerable. Older WordPress installations that are no longer used but still accessible from the web.

    It's quite likely that none of these apply to you, so please contact me and lets figure out how it occurred and whether this is a new vulnerability and if there's any way we can protect other users from the same issue.



  3. Bombdogs
    Posted 3 years ago #

    Quick question related to your comment above - would the wordfence scan pick up a vulnerability like the recent timthumb exploit if it existed in an old theme?


  4. Bombdogs
    Posted 3 years ago #

    Please ignore my question - I can see the readme has a section on this exploit.

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Wordfence Security
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic