Why I was not online anymore.
Several months ago I got a message from someone who said:
Where's your website gone? It was great. Why is it offline now?
I was like "huh"? Offline why? And headed there immediately.
Just to find some crap. Nothing left. Porn and stuff I've never uploaded.
First I tried to login. Not possible anymore. It got destroyed or what?
So I researched the backups of my web-hoster (I got two sites somewhere else).
Didn't help at all. Everything also before was already infected. But not by me.
I am sure you know about the famous GDPR plugin exploit that someone might use to destroy your site.
I tried to repair it myself first, didn't help. BUT, for heavens sake was I happy that I had learn programming for a long time. Thus, I at least could remove a lot of the stuff and make the site run again, after I made it run locally, including the database.
But then, it happened again. Shortly after. Ok, I researched more what stealth plugins, security plugins and all kinds of things to make it more secure.
BUT, what I am still facing are constant hack attacks.
Did anyone have the same problems?
It's crazy.
The site has something in the name that relates to deep trust,
but for sure no one will trust the site anymore AND on google it's ranked very low now.
If the hack attacks would have stopped I would have started to rebuild the rankings, but like this... to no avail.
What can I do in this case?
Until now I've read in countless forums and stuff and still don't have a solution.
I installed wordfence to at least protect it much better.
What would you do or did do?
Because I see the hacks starting at my site hosted here again.
But THIS site from here - the other's as well - are not linked to the others from another hoster.
I'll appreciate any help.
So you know now, I didn't give up. I tried to defend myself.
And no, I won't grow bitter because of that. Only better. :-) I will go on. Don't worry.
All the success and a little luck to you as well. Have an awesome time.
~ Holger
Recent Comments
5
It's been a while again. But...
What already had been done:
- Using SSL at least
-
What I now did meanwhile:
- I repaired the site - AGAIN - manually.
- Enabled two-factor authentication for the app.
- Generated a new password.
- Pressed the button "Logout from anywhere else"
- The IPs of the recent attackers have been blocked
- Restricted the login tries to 5 instead of 10.
- Updated to the newest Wordpress version
- Updated the plugins
- Disabled Xml-rpc access for now
What's still missing (Wordpress related):
- Exclude admin users
- Change login url
Server Related:
- Editing of HTTPs and others.
BUT: The site is running again, since today. :-)
It is unusual that they got through WA's security. You definitely need to talk to site support. Jim
Holger, I'm so sorry to hear about this. Sounds serious and I certainly would get to the bottom of it. I think Helen has a good suggestion. Contact site support, if your site was hosted here, which I assume it was?
Glad you're back!
Joe
So your site was hacked here? Have you spoken to site support ? I find it really strange that they could hack here. I have had no problems and this is the first time Ive heard of it here... I really hope they can help you resurrect it from the hackers...
The thing is:
All the 3 sites I got are still hacked.
This is crazy. No matter how many times I repair them.
One is here now. There it has stopped. Thank God.
But it didn't publish anything since the beginning in here.
I feel like I want to give up on that. :-(
But I think I'll give it one last shop....
It's been a very long time.
I mean one site. Yes. Two sites. Yes. But all of them? Come on!
There must be some criminal activity in the background just to damage my business. I really and honestly hate that. This is not good.
Why couldn't they use their energy to do something productive?
To help people?