WordPress site hacked

Actually, my site was hacked using wordpress a few months ago, whoever did it corrupted the files on my site and deleted it completely. My computer is not on a network and I never left the admin open. Any suggestions on how I might be able to safetly use word press without leaving myself open for attack? I’ve heard that php itself lends itself to being hacked because its built on a somewhat open ended platform.

Witty, I think a concern here is people using statements like “hacked using wordpress” without really knowing how their site was actually compromised. So many of the “found a WP bug” threads often, when resolved, are found to be user error or misunderstanding. I suspect the same is true here, but no doubt we are all open to seeing support for such statements so, if justified, they can be resolved.

My suspicion is from a perceived, but admittedly subjective, probability based on experience with such matters.

You can “safely” use WP by all the normal means of “securing” any site – good passwords, etc. I say “safely” because valid issues do arise that need to be corrected. I seem to get security updates for so many of my programs, from browser to router, so WP is not alone.

You have to remember that the affected program is not always the point of entry. For example, if you are on a cPanel-based hosting using WordPress, then the exploited entry point could have been WordPress (though there are no known vulnerabilities in v1.5.2 at this time), cPanel, AWStats, FTP, or even Apache itself.

Witty, since the files on your site were corrupted and deleted completely, you more than likely fell to a cPanel or FTP exploit, not a WordPress exploit.