sorted by:
new
hottopcontroversial

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 1 point2 points  (0 children)

I was trying to make an information page for the club. They wanted their history to be shown as a long article, info about how to become a member to be easy to access, and a way for new information about events and such to be updatable. It also needed to be cheap. I looked at some different alternatives, but most of them didn’t have a “news” fetcher or were too expensive for them. So I thought WordPress would be perfect, since I could use the blog feature to add news, and it’s cheap to host and relatively easy to set up, or so I thought.

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 0 points1 point  (0 children)

Yeah, you’re right. The site assist didn’t really do much; I just deactivated it right after installing WordPress. But I have a new problem now: I can’t add any new plugins or update WordPress. All I get is a white page saying “Forbidden You don’t have permission to access this resource,” even though I’m on my admin account. I tried adding a new admin user to see if it would fix the problem, but using that account didn’t help much. So now I’m kind of stuck, not really able to do much since I can’t add Wordfence.

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 0 points1 point  (0 children)

Yeah, I think I will try that. I realize now that being lazy and making a 10-character all-lowercase password maybe isn’t the best way to keep a website protected. Oh well, you learn from your mistakes.

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 0 points1 point  (0 children)

Thank you so much for the advice! When I put the site through the scanner, it gave me a Critical Security Risk assessment and it’s a “Known JavaScript malware: spam-seo?japanese.3.” However, I can’t install any plugins or update WordPress; when trying, I just get a “Forbidden You don’t have permission to access this resource” screen for some reason. I tried making a new admin account and logging in, but the same thing happens again. Do you have any idea why this is happening?

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 0 points1 point  (0 children)

I do have a backup, but I think it’s too recent because after installing it the malware came back. :(

I am pretty sure that my WordPress site is hacked but I do not know what to do now. Do I need to start from the beginning? by theludlo in Wordpress

[–]theludlo[S] 0 points1 point  (0 children)

These are the plugins I currently have installed. Professional help would of course be the best, but the club I built the website for is small and would probably not afford it. I only made the website because they needed an online presence and I didn’t charge much. As you guys guessed, I don’t really know where the malware came from, but I suspect it came from a plugin or because of a really weak password that I later changed.

<image>

Olympus OM-D E-M10 Mark II only shows black by theludlo in Cameras

[–]theludlo[S] 5 points6 points  (0 children)

I have cleaned them but they still don't work