Site keeps getting hacked

  • Last week, a tipoff from a customer let me know that our shop website was hacked. I installed wordfence and found/corrected the problems, which were numerous. Since the first clean up, I re-scan multiple times per day. Every day or second day I find one of the hacks keeps coming back. Screen shots below:

    https://i.ibb.co/rt7ygcK/capture1.png
    https://i.ibb.co/GdCJ1rm/Capture2.png

    These @include css statements are being added to the beginning of my wp-settings.php and index.php files. I’m thinking this might be part of an AWK pattern scanning operation. Unfortunately, the wordfence tech support has been pretty underwhelming.

    My question is – how do I stop this from happening without shutting down our site? WordFence firewall is still in “learning mode”, so it’s not active yet. Could this be a SQL injection?

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)

  • I’d install iThemesSecurity alongside WordFence… they behave well together and compliment each other.

    I’d also sign up for the free CloudFlare account and make use of that. That will give you a very robust DNS service and they will proxy your content giving your website about a 20% boost in performance while helping to hide the technical side of your website from further attacks.

    Also read this…

    Hacked? Carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures and start backing up your site.

Viewing 1 replies (of 1 total)
  • The topic ‘Site keeps getting hacked’ is closed to new replies.