How to fix WordPress site that has been hacked. Protect your site with iThemes Security Pro

 

Our external website got attacked yesterday (and not proud of it). We are very security conscious and hold NO data (customer or own) on our site excluding our blogs.
Even with strong admin passwords, we thought we were safe.
The only way we were safe is we make monthly off server backups.

We tried recovering some files but each time, there was a background script which would kill those newly updated files and replace with the ‘hacked page’.

We have now implemented a plugin called iThemes Security Pro.

This is a free plugin and is brilliant as allows so much configuration through a GUI (simple) interface, including renaming admin account, locking down php files plus much more.

It is also rated quote high and has over 700,000+ installs as well.

The main thing here is the fix was to restore from a backup after deleting ALL files on the host, then applying iThemes Security Pro

Make sure you backup, backup, backup. (iThemes Security Pro will do this for you as well)

If you need help with implementation of this, or assistance with a hacked website, comment here or contact Sterling IT.

Encrypted password creator and storage – Adobe password hack check – Password strength test

Do you use the same password on multiple sites and/or applications?

If so, PLEASE STOP. With many websites getting hacked such as Sony and recently Adobe, using the same password on multiple sites is becoming extremely dangerous.

You can test the strength of your password by visiting GRC.COM . A trusted and brilliant website.

One step better than making your own passwords is use a trusted application called LASTPASS.
You only need to remember ONE password, that’s it. This is also FREE, however if you want to use it on your mobile, its $1 per month. (thats right $1).
For business where you want to have encrypted secure passwords, its $2 per month.

You can double secure this by using a USB key so even if someone was to get your username and password, without the USB key, a hacker will still not be able to access.

Contact Sterling IT for an online demo. We can also assist in setting up but more importantly, customise your lastpass for additional security.

Want to check if your email was hacked at Adobe? Click Here

lastpass-1

 

 

 

 

 

 

 

 

 

You ask then HOW can I remember so many passwords?

A couple of ways of doing this is create passwords based around the website you are using, however if there is a pattern, a hacker will still work out your passwords

lastpass4

lastpass-2

 

 

 

 

 

 

 

Prices correct at time of publishing 3.12.2013