3. Hack help

Hack help

If you kept backups: the easiest, cheapest and least time-consuming approach is to wipe out the entire WP installation and rebuild from the most recent unaffected backup. After WP reinstallation you'll have to immediately update all the plugins, themes and WordPress core to their latest versions.

If reinstalling WP doesn't fix the issue you'll have reinstall the entire server OS (likely some sort of Linux) as well. Unless you have the know-how, time and patience to fix the issue without reinstallation.

If you didn't keep backups: you've just committed the gravest of IT sins, let this be a lesson. Get ready for putting in some long hours into this, especially if you don't know what you're doing.

1) If you're lucky, the attacker is a script kiddie who just used an automated tool that scans websites then breaks into vulnerable or out of date plugins/themes/WP. There are some security plugins that can scan for and remedy such things. They are iThemes Security Pro and Sucuri. They are NOT free, so you'll have to throw down some money. There might be free analogues out there, you'll have to do your own research on that though. At the very least use the free Sucuri website scan, so you know what you're dealing with. If you don't have the budget, save what content you can and reinstall WordPress from scratch.

2) If you're not so lucky and the attacker is any good, they likely installed a backdoor after breaking into WordPress and possibly messed with the server OS itself. If you don't have any sort of competency in server security and/or administration then best approach is to wipe out the entire OS and start from scratch. This problem could be exacerbated and next to impossible to fix if you use shared hosting.

First, assume that situation 1 is true and do everything to remedy that. If it doesn't help, you know you have situation number 2 on your hands.

Good luck.

/r/Wordpress Thread
Previous
Next

Recently removed from /r/Wordpress

Documenting Plugins Lead generation methodology idea for business websites with Wordpress new web developer Route all requests through index.php prior to using WP template hierarchy I want to learn how to code and specialize in WordPress Looking for a Gutenberg block creation tutorial Malware is affecting our shared server which has about 20 wordpress websites Super Basic- Help adding Pagination to recent blog posts page WordPress 5.2 Released, and ready for download! Have you used free Rank Math SEO plugin from MyThemeShop and would you recommend using it? Free, proxied nameserver besides Cloudflare for Wordpress Divi License for freelancing If I want to use a theme for 3 different websites (for clients), do I need to buy the theme 3 times? Landed my first “real” client. How do I set up a test environment for Wordpress, then migrate it to the client? Should I call myself a Wordpress Virtual Assistant? Or Wordpress Maintenance Services? Or something else?

More Random Comments

[PSA] User /u/hey_iceman asked me to break rules of sub_reddit when you have 99 int but your best sorcery is finger dex How 343 can Fix the Challenge System AITA for reporting the pizza delivery guy for sliding a note under my girlfriend's door. Every time after sex, we tend to have negative feelings. Why? The sexual harassment "double standards" for attractive people make COMPLETE sense War in Ukraine Megathread XIX Anderson Silva set to box Bruno Machado in eight-round exhibition match in Dubai Not sure what I’m doing wrong? this is unthinkable today Having No Limits or Preferences Doesn't Make You More Interesting How do people handle break-ups healthily? Tipps zum Meditieren My 6 months job search as a junior software developer Are index-funds hurting the economy?