Website appears hacked – redirecting and cannot access dashboard

  • neenbeans90

    (@neenbeans90)


    6 years ago

    Hi,

    I went onto my website before the weekend and all the theme was messed up (not showing at all) so my content was all over the place. Within a few seconds it diverted to a dodgy looking site that wants you to click to ‘get back to safety’ etc.

    When I usually go to my site, the dashboard is at the top but it wasn’t showing this. When I typed in /wp-admin it would take me to a pastebin url that just showed code.

    I managed to log into wordpress.com and when I looked at the activity, it was all stuff I hadn’t done. There were multiple ‘WordPress address (site url) set to’ for different urls that are unknown to me. As well as plugins being added and deactivated and the time zone set to Abidjan.

    My hosting provider (heart internet) was not much help and only told me I have suspicious files in my folder and that was about it.
    I have really struggled to find any answers as I originally used the wordpress.com forum then discovered I was to come here to .org.

    I have since been able to take my website down via my hosting. But I do not know where to go from now as I can’t log in to my dashboard.

    Really, really confused with all this.

    The page I need help with: [log in to see the link]

Viewing 6 replies - 1 through 6 (of 6 total)
  • wisconsinwebsites

    (@wisconsinwebsites)

    What about a full recovery of your website from either the hosting side or your side if you use software that can do that?

    Thread Starter neenbeans90

    (@neenbeans90)

    I fully explained my situation to my hosting and they didn’t give much that I could do so I wouldn’t even know how to do that. And the wordpress side I can’t get into. I couldn’t even put it in maintenance mode.

    JNashHawkins

    (@jnashhawkins)

    Just recover using your backups… you did do some backups recently didn’t you?

    Kings Amalaego

    (@toomakesense)

    Your hosting provider is supposed to take care of that, please contact them for help

    Martin

    (@whocares2018)

    There was a security issue a few days ago in the WP GPDR plugin, allowing someone introducing a new user (admin level) in your site. You should have had an email from your site telling you so.

    rollback from a previous backup, login and download the latest plugin updates.

    Installing the ninja firewall will help preventing a hack again, since wordfence did NOT prevent this hack from happening…

    My security check that identified the hack was from Easy WP SMTP plugin

    Here is a report in case it helps anyone else
    https://wpvulndb.com/vulnerabilities/9237

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Website appears hacked – redirecting and cannot access dashboard’ is closed to new replies.