robev Posted June 2, 2014 Posted June 2, 2014 My website appears to have been hacked. It says it was by "TeamWaSpH". I fixed the index.php page, but is there any way to determine if other pages were replaced? Everything else appears to be normal, but I'd rather be safe than sorry. How do I prevent this in the future? I changed my passwords... username: robevwebsite: http://robbiewolfe.ca I use WordPress, and I see someone else had their website hacked and they had WordPress. Is there any way it's connected / I can make it more secure? Thanks
hussam Posted June 2, 2014 Posted June 2, 2014 That depends on how they hacked you.You seem to be running the WP 3.9.1 which is the latest.You are also running jetpack. Make sure you are running the latest version. Secure your wp-config.php (read only by everyone even owner). I can't stress this one enough. I know of one free host (not heliohost) who had over 1000 users' wp sites hacked because of unprotected wp-config.php Don't use random plugins. Only use well maintained ones. The less plugins, the better.Same goes for your theme.
yashrs Posted June 3, 2014 Posted June 3, 2014 They may have installed a backdoor on your website. You should consider reinstalling wordpress and all its themes, and plugins. You should also check for malicious files in your directory. Some codes like eval(base64decode(...)) are malicious code.
Recommended Posts