Wordpress Security Help - I have been hacked

I have a ton of Wordpress sites, both mine and clients. Several were hacked over the weekend. It looks like they just replaced the index.php file and made it so my login into the dashboard didn't work.

Any good plugin suggestions to help prevent these types of hacks?

 

Hmm that's interesting. You'd think the developers of Wordpress would be on top on these things. Make sure you have the latest version and get in touch with Wordpress support. Only they can help you properly.

 

what version are you running? are you maintaining the server? was the server hacked?

 

Do you have any third party plugins? I expect that if you have they are compromised.

 

wpsecurity.net/category/plugins

wordpress.org/extend/plugins/secure-wordpress

 

I really don't think plugins will help you much. Hire a security expert and analyze server logs properly to see how it happened. In most cases its not wordpress itself but insecure plugins and server are the basic reason of hacking. I had fixed a few sites of my clients in the past and interesting thing to note is that they all were hosting there websites on godaddy and even after fixing, there websites were getting hacked again but once they shifted to some other host upon my suggestion all hacking attempts were stopped. So in my experience poor server security could be the cause of your websites getting hacked!

 

Hi, there was the biggest security flaw on WP on one of the previous updates and was a critical one. People were told for the immediate update after the vulnerability was found.

 

Install latest WP version, analyze the logs and get help with security experts. Be cautious in getting third-party plugins.

 

Yep, been down this road as well. Stopped using wordpress and moved onto google sites. Never got problems with vulnerabilities again.

 

Upgrade your wordpress to new version. Then check the log ti find the way hacker access your site.
Contact me to help if you can't find the way.

 

In such a case I'd be very careful.

First of all change any passwords, then get backups of your database and reinstall every wordpress blog on the compromised server.

Don't keep any file that has been on there, any php file could still contain a backdoor. (So called webshells, that give you full access like Windows Explorers)

I've already seen this happening once to a friend, and you really want to make sure to kill everything that has been on the server.

 

I am having a similar problem with Hosting Zoom servers. Am beginning to think I should close down these accounts to see if it stops the rot.