13 {{ upvoteCount | shortNum }}
13 {{ upvoteCount | shortNum }}

More than half of my sites were hacked!

by msdobe
11 replies
Was I ever surprised when I logged into some of my websites and found the dashboard looking really strange. I called Hostmonster and found out they had been hacked. I went through most of my sites and more than half of them have been hacked!

I googled base 64 virus and found out that alot of websites were hacked a couple of weeks ago. If anyone else has had this problem I found a site that may help. I haven't tried it yet, but you may want to check into your websites to see if there are any problems. The site is:
How to Get rid of base64 Virus on WordPress | Gadget Cage

I lost one site completely (through my own stupidity), but then thought to Google and see if I could find anything. So hopefully, if any of you have the same problem, this site will be able to help.

Good luck!
Jenny
#hacked #half #sites
  • Profile picture of the author MilesT
    Jenny. This is generally due to a poor password. Creating the MOST cryptic password you can help. Never use an actual word, from anywhere, ever. I had a few sites hacked once and after having to delete one completely i started using some crazy passwords and change them fairly often. That stopped the hacks. I also keep my WP as current as possible.

    Also, there are a couple of good backup plugins that backup content and not code.

    Cheers
    miles
    Signature
    http://www.RedHeadline.com
    Internet Marketing's Top Daily News (Updated today)
    {{ DiscussionBoard.errors[2517283].message }}
  • Profile picture of the author J Bold
    That really sucks. I just use the random passwords given to me by Wordpress. I figure it's a good idea as they're so random, but perhaps I should go through and change them all to random passwords, again.
    Signature
    {{ DiscussionBoard.errors[2517299].message }}
  • Profile picture of the author Tony Dean
    Wordpress hack again!

    Why does anyone use it?
    Signature

    {{ DiscussionBoard.errors[2519805].message }}
  • Profile picture of the author Gary King
    It can also be because your computer has a virus or keystroke logger on it...

    That infection can capture your login info for your WP sites and send it of to who knows where - the malicious underworld then logs in with your credentials and you're having a bad day.

    Other threads abound on this. Check for a strong password on your WP installs. Do complete scans on your computer(s) for viruses and malware.

    free.avg.com if you don't have an antivirus program
    Malwarebytes if you don't have a spyware program

    Sorry you are in the boat you are in - it's not fun. That said, moving forward, please always make sure you have a current backup of your sites somewhere besides your web host. Even if they back them up for you (some do, some don't) it's a good idea to export everything and keep it at your office/home so it's away from the server location.

    Best of luck.
    Signature

    ===========================
    OFFLINERS! Warning: Unless You Know These Pricing Secrets, You are Leaving THOUSANDS on the Table. Get Your Free Report Now.
    {{ DiscussionBoard.errors[2519830].message }}
  • Profile picture of the author ~kev~
    Strong passwords = yes, but its not the answer to all of your problems.

    Is your home computer secure? Do you install security updates? Do you scan for mal-ware? Do you have an anti-virus on your home computer?

    Do you log into your sites from anywhere besides your home computer?

    It does not do any good to have a strong password, if you have a keystroke logger installed on your computer. Regardless of what you change the password to, the program will get it again, and email it to the hacker.

    Do you have brute force protection installed on the server? So that after 5 attempts to log in, your account is locked down.

    Is this a shared server? Another site on the server could have been compromised, and the hacker could have used an exploit to elevate permissions to root or power user.

    Is all of the server up-to-date on security patches? Is apache, mysql, php,,,, up to date?

    Does your host have a reputation of weak security?

    Are you using a database driven content management system? If so, is it up-to-date?

    Are you on a shared network, like a college campus - where someone can use a packet sniffer to grab your ftp or root user name and password? A lot of programs use clear text to transmit usernames and passwords. When all possible, use SFTP - so the log in information is encrypted.
    Signature
    Country Lifestyle Network
    {{ DiscussionBoard.errors[2519881].message }}
    • Profile picture of the author jlxsolutions
      One word=Linux
      I never need to worry about my personal computers security unless i decide to give out my root password lol.
      as for webpages keep them updated and use strong passwords.
      Oh and a side not base 64 is not a virus but a common way to "encrypt"
      malware but also used for legit purposes all over.
      {{ DiscussionBoard.errors[2560352].message }}
  • Profile picture of the author tommygadget
    Yep, keyloggers are I would say the main source. Right after that are shared exploits from compromised accounts with shared hosting. Backup and check your sites frequently.

    TomG.
    Signature
    {{ DiscussionBoard.errors[2560360].message }}
    • Profile picture of the author EricThor
      Sadly there are many sick people who live to hurt other folks - they can't get enough of it.

      As far as I know Wordpress is state of the art in terms of trying to keep ahead of the sickos who delight in hurting others. Someone show me a study from any university stating that Wordpress is inferior to any other publishing platform out there - and its free too.

      Just like we must shuffle through the TSA security lines at the airport to protect ourselves from sickos who not only want to hurt us but kill us so must you protect your websites and yes it is an inconvenience.

      Wordpress is constantly being upgraded to ward off security hacks - if you decide to be lazy and not keep up you are open for attack.

      Use a complex password and keep as list of them NOT on your computer since sickos attack your PC as well - use pen and paper to keep a log.

      Backup ALL your websites once a week and download the backup to a PC that is then backed up to a removable hard drive and rotated to a safe deposit box once a month.

      That's what must be done to protect yourself, your livelihood, and family from sickos who should be in a mental ward but spend all day at the public library's PCs tormenting other folks for fun (and your taxes pay for this)...
      {{ DiscussionBoard.errors[2560388].message }}
  • Profile picture of the author phsims
    I can totally sympathize with you, this happed to me a few months ago and left everything in a complete mess, the hacker had inserted a script that spammed articles onto my pages, it took me ages to fix.
    Signature
    Get on page 1 of Google FAST! WSO

    Reviews of Website Traffic Products
    {{ DiscussionBoard.errors[2560365].message }}
  • Profile picture of the author ChrisCree
    This hack was caused by a security hole with some web hosts, not WordPress. GoDaddy in particular was hit hard with this one a few months back.

    The worm worked its way through php files on the sever. Because WordPress is coded in php it was affected.

    Be sure to check all your plugin and theme files as well as your core WordPress files because they may have been infected as well.
    {{ DiscussionBoard.errors[2560795].message }}
  • Profile picture of the author qvalpro
    I know someone who is trying to move to static HTML after having a bad experience with his wordpress site hosted with Mediatemple
    {{ DiscussionBoard.errors[2561068].message }}

Trending Topics