HACKING ADVICE and a WARNING

[lovboa]

I just logged onto my site a few minutes ago and browsed around some of my older posts. I was surprised to see that there were links IN MY CONTENT.
Comments are disabled on all of my posts...the links were in my content.
On 15 of my posts.
I use wordpress and have the latest version...but I am guessing that I was hacked for backlinks.

Every link was pointing to a different site with a different anchor text. There were about 2-3 backlinks on every post snuck into the middle of my text. ex. "xbox games, seo in detroit, wine glasses, etc.
None of my content was changed. In total, there must have been about 15 backlinks snuck into my content. I am guessing that it was there for a maximum of a week because I checked my posts last week.

How did this happen?
I have heard of people getting hacked and their sites were like spammed to death with viagra links...but it appears mine was hacked by a webmaster or backlinker trying to sneak in a few backlinks.

What annoyed me more was that each link had rel="dofollow" on all of them.
I immediately deleted all of them and now they are gone.
But I am scared that my site has been targeted and they will keep coming.

Has this happened to anyone before? Is there a way I could fight/prevent this from happeneing again in the future? Is there anything else that they could have hacked that I don't know about?

You should check your old posts if you haven't in a long time.

[hostingraja]

Really its good information, at the same time its never happen low competition keywords targeting sites. what will happen in some of the time once they cant able to bring first position in Google. they are like to do this way.

[xylement]

It happens to me as well previously... what I did was change the password quickly and delete all the links or new content they've create then its solve. They probably got my password somewhere @.@

[David Ogden]

Hacking is always a risk, I have had two websites hacked in the past and maleware loaded which was picked up by Google and it took a few weeks to remove it. Choosing a difficult password and not writing it down on any computer device is the best, but then you have to watch out for key loggers.

Use a good security system and don't open any email if you do not know the sender. I believe that using WIFI can also open up security issues.

[Wild]

I'm dealing with a phishing attack, as we speak (or type/read) launched from my hacked account and it currently has me shut down. What a pain. This happened a few weeks ago and I made sure the WP was updated and changed passwords scanned the home computers. These guys have my number and I don't know how to get it unlisted.

[Lyanna]

Eh? Is this a fake post or something? There's no such thing as a rel=dofollow tag, that's nonsense and surely anyone smart enough to hack and insert links would know that.

[lovboa]

Just want to update you guys that my site WAS hacked.
Apparently, malicious files were uploaded to my account. Be wary when you are uploading plugins and new themes to your site. Only use trusted plugins and themes from trusted websites. It is so easy for a hacker to write malicious content on a plugin or theme and then just have you upload it to your files.

It was solved by hostGator right away when I contacted them. So, if it you see something wierd, just contact your hosting company. They'll scan it for malicious files and then clean it all up.

[yukon]

I bet it's your theme or plugins.

It's almost always the theme or plugin, most times people are hacked before they install what they thought was a legit theme/plugin.