{"id":21551,"date":"2023-10-08T11:42:20","date_gmt":"2023-10-08T09:42:20","guid":{"rendered":"https:\/\/wpbeveiligen.nl\/?p=21551"},"modified":"2023-07-19T11:43:44","modified_gmt":"2023-07-19T09:43:44","slug":"wordpress-hacked-yet-again","status":"publish","type":"post","link":"https:\/\/wpbeveiligen.nl\/en\/wordpress-hacked-yet-again\/","title":{"rendered":"WordPress hacked yet again?"},"content":{"rendered":"<p><strong>Your website is offline, and you contact your hosting provider only to find out that your WordPress website has been hacked.<\/strong><\/p>\n<p><strong>And it&#8217;s sending spam&#8230;<\/strong><\/p>\n<blockquote><p>For security reasons, the hosting provider has taken your website offline.<\/p><\/blockquote>\n<h2>Why your website is offline<\/h2>\n<p>Many websites are hosted on a single server, which is a powerful computer with a single IP address. When too much spam is sent from that IP address, major mail servers put it on their <a href=\"https:\/\/mxtoolbox.com\/blacklists.aspx\" rel=\"nofollow noopener\" target=\"_blank\">blacklist<\/a>.<\/p>\n<p>In other words, if your website continues to send spam, other customers won&#8217;t be able to send emails, and their emails won&#8217;t reach their recipients.<\/p>\n<p>To cut a long story short, your website is now offline and inaccessible until you remove the file responsible for sending spam.<\/p>\n<h2>Where can you find a spam script?<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-8698\" src=\"https:\/\/www.wpbeveiligen.nl\/wp-content\/uploads\/2017\/03\/17526723-searching-files.jpg\" alt=\"searching files\" width=\"109\" height=\"109\" \/><strong>The spam script can be a single file located among the files in your WordPress site on the server.<\/strong><br \/>\nSometimes, the file is found in your uploads directory because it can be written to by third parties.<br \/>\nHowever, with a vulnerability in your plugins, <strong>the main directory is also accessible<\/strong> to hackers and hacking scripts.<\/p>\n<blockquote><p>The file can be located anywhere.<\/p><\/blockquote>\n<p>We often find the spam script in the uploads directory, among plugins, within themes, and in subdirectories.<\/p>\n<p>You might think, &#8220;I&#8217;ll remove the spam script from my website, and then the website will go back online.&#8221;<\/p>\n<p>Sounds logical, right?<\/p>\n<p>Piece of cake!<\/p>\n<h2>A spam script means a hacked website<\/h2>\n<p>A spam script in your WordPress site indicates that hackers or automated scripts have found a way to access your server. That&#8217;s how the spam script ended up on your website and server.<\/p>\n<p><strong>That vulnerability needs to be patched!<\/strong><\/p>\n<p>A vulnerability can be present in an outdated plugin, in WordPress itself, in the passwords you use, or in the server&#8217;s security.<\/p>\n<h2>Closing that vulnerability requires expertise and experience!<\/h2>\n<p><strong>Hackers are cunning and use special codes and proven tricks.<\/strong><br \/>\nFor example, Base64 code is written in PHP but encoded so that the server and search programs cannot detect it!<\/p>\n<blockquote><p>Fortunately, you&#8217;ve found WPbeveiligen!<\/p><\/blockquote>\n<p>We identify vulnerabilities and hack scripts, carefully remove them, and ensure that your WordPress site is not easily hacked again!<\/p>\n<p><a href=\"https:\/\/wpbeveiligen.nl\/herstellen-type-website\">Click here<\/a>! Get your hacked WordPress website cleaned and secured now!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Your website is offline, and you contact your hosting provider only to find out that your WordPress website has been hacked. And it&#8217;s sending spam&#8230; For security reasons, the hosting provider has taken your website offline. Why your website is offline Many websites are hosted on a single server, which is a powerful computer with [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":8709,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[198],"tags":[],"_links":{"self":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/21551"}],"collection":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/comments?post=21551"}],"version-history":[{"count":0,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/21551\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media\/8709"}],"wp:attachment":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media?parent=21551"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/categories?post=21551"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/tags?post=21551"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}