{"id":21371,"date":"2023-08-31T11:09:10","date_gmt":"2023-08-31T09:09:10","guid":{"rendered":"https:\/\/wpbeveiligen.nl\/?p=21371"},"modified":"2023-07-12T11:12:27","modified_gmt":"2023-07-12T09:12:27","slug":"wordpress-has-been-hacked-how-come-my-wordpress-website-has-been-hacked","status":"publish","type":"post","link":"https:\/\/wpbeveiligen.nl\/en\/wordpress-has-been-hacked-how-come-my-wordpress-website-has-been-hacked\/","title":{"rendered":"WordPress has been hacked, how come my WordPress website has been hacked?"},"content":{"rendered":"
You have a website that suddenly displays advertisements<\/a> or forwards visitors to another website. Or worse, your website sends spam<\/a>\u00a0 (E-mails with unwanted advertising).<\/p>\n You haven’t changed anything on your website and yet your website was “suddenly” hacked.<\/p>\n Then the question arises: how come my WordPress website has suddenly been hacked?<\/p><\/blockquote>\n You have a lot of questions, but the answer is very simple on 99.9% of the websites<\/strong>:<\/p>\n A virus, script has modified your website. Completely automated and will affect thousands of other websites.<\/p><\/blockquote>\n Is that so easy? Is there nothing to do about that? Who is behind those hacks? Plugins and themes are responsible for 45% of hacked websites. A leak, what does that mean… it’s not a swimming pool! Okay, now that you know that plugins and themes are 45% of the causes of a hacked WordPress website, you think: simply use few plugins and it’s solved!<\/p>\n But unfortunately, there are more security risks with a WordPress website<\/strong>. And that starts with the programmer who creates your website.<\/p>\n <\/a><\/p>\n As you can see, there are several factors that can make your WordPress website hackable. Hackers, cybercriminals, thieves. And very occasionally ordinary citizens who live in countries where not enough money can be earned with the regular job. IT professionals who have been laid off but still have to support their families. Many hacks and attacks come from poor countries, since you only need internet and an old computer to write a virus\/hack.<\/p>\n If you have a website that is about your family or about your hobby, you can’t imagine that a hacker can make money from your website.<\/p>\n Yet you can!<\/p>\n Link building Selling products through a wide range The product often costs 100-200 euros, has to be paid via the internet and ends up in an anonymous account. The product is not delivered.. and that gives the hacker a lot of money without incurring major costs.<\/p>\n And so there are many ways to make money when a website is in the power of a hacker.<\/p>\n It’s not WordPress that’s insecure, it’s the plugins, themes, and the aforementioned external factors that give hackers the ability to hack into your website.<\/p>\n WordPress is well maintained and secured, you just need to know how to handle it.<\/p>\n Every CMS has to deal with hacks.<\/p>\n The programmers of WordPress (Automattic) work daily to keep the CMS as secure as possible. New updates are regularly released to keep the system safe.<\/p>\n 40-60% of all websites in the world run on WordPress, and for good reason.<\/p>\n WhyWordPress is a good basis for company websites, webshops and blogs<\/strong><\/p>\n Install and configure a security plugin: It is important to set up the security properly. Using plugins:<\/strong> The hosting:<\/strong> We offer a monthly maintenance subscription where we secure WordPress and keep it up-to-date. We also check the website for break-in attempts and we actively prevent hackers.<\/p>\n You can easily request that subscription, click here for the current rate<\/a>.<\/p>\n We can remove the hacks and ensure that the hackers no longer have a grip on your website. After removing the hacks, backdoors and blocking the hackers, we keep your website up-to-date and keep an eye on it.\n
\nRead on if you want those questions answered! (Brace yourself because it gets technical.)<\/p>\nThe cause of most hacks: via outdated plugins and themes<\/h2>\n
\nHackers download the plugins and themes and test them for security vulnerabilities.
\nAt wpvulndb.com<\/a> you can see which plugins and themes are leaking.<\/p>\n
\n<\/strong>A leak is a collective name for the possibility to give commands (hacking) to the server.
\nThis can be done via input fields that are not closed, via files with wrong permissions, via incorrectly saved data and more.<\/p>\nThe security risks of your website in percentages:<\/h2>\n
\nThe programmer, the web host, you as a user, the CMS itself and, as mentioned earlier, the themes and plugins.<\/p>\nWho goes to all that trouble to find and exploit security risks?<\/h2>\n
\n<\/b><\/p>\n
\nThis can sometimes even involve intelligent ICT people with 20-30 years of experience. Or even entire IT departments…<\/p>\nHow does a hacker earn money from my website?<\/h2>\n
\n<\/strong>By placing links in your website, a hacker can increase his website considerably in Google.<\/p>\n
\n<\/strong>The hacker uses your good name\/website and that of thousands of others to sell his product.
\nImagine you have a website with beauty products, and it contains a link to a product that prevents aging or other problems.
\nThere are still a surprising number of people who buy such a product.<\/p>\nWordPress seems very insecure, should I switch to another CMS?<\/h2>\n
I’m just starting a new website, should I choose another CMS?<\/h2>\n
\n
\n(Think of the REST API, Gutenberg editor, Privacy options, SSL support)<\/li>\n<\/ol>\nWhat can I do to secure WordPress?<\/h2>\n
\n<\/strong>First of all, it is important that you a good security plugin a> installs. A security plugin works like Antivirus & Firewall for your website.<\/a><\/p>\n
\nThe security plugin needs to be tuned to best protect your website against hackers and hack scripts, but your WordPress website and plugins must have permissions to function.<\/p>\n
\nLimit the number of plugins, as each plugin contains a series of code that can be used by hackers to get into your website.<\/p>\n
\nHow do you know if a hosting party is good?
\nMake sure they have 1 of the most recent php versions.
\nDo not go for a budget package of 1 euro per month, but pay a little more to a hoster who also provides support by e-mail or preferably even by telephone.
\nChoose a hosting party that has been around for a number of years and that has many customers.
\nThis way you have a reasonable chance of finding a good hoster, where your website is on a secure server under the supervision of specialists.
\nNote: They are responsible for the functioning and keeping the server online, they are not responsible for what you or a hacker does with your website. They can therefore not fully protect your website against hackers, that is simply not their job.<\/p>\nWhat does it cost if I have my WordPress secured?<\/h2>\n
Yes, but my WordPress has already been hacked!<\/h2>\n
\nWe will not calculate the costs for this in 1x, but through an affordable subscription.<\/p>\n
\nThis way you can be sure that you are rid of those miserable hacks and hackers, and that they will not come back!<\/p>\n