{"id":21564,"date":"2023-10-11T11:55:01","date_gmt":"2023-10-11T09:55:01","guid":{"rendered":"https:\/\/wpbeveiligen.nl\/?p=21564"},"modified":"2023-07-19T11:56:55","modified_gmt":"2023-07-19T09:56:55","slug":"wordpress-has-been-hacked-now-what","status":"publish","type":"post","link":"https:\/\/wpbeveiligen.nl\/en\/wordpress-has-been-hacked-now-what\/","title":{"rendered":"WordPress has been hacked, now what?"},"content":{"rendered":"<p>WordPress is often hacked through vulnerable scripts. We still call it hacking because there has always been someone who wrote an automated script, and their advertisements appear on your website due to the hack. In fact, it&#8217;s more automation than hacking, as the script works 24\/7 without the hacker being involved anymore.<\/p>\n<p>But once you have an advertisement or your website is sending spam due to the hack, it&#8217;s important to get rid of it.<\/p>\n<h2>Restoring the hacked website<\/h2>\n<p>You can follow this step-by-step guide to restore your hacked website:<\/p>\n<ol>\n<li><strong>First, make a backup of all data and the database<\/strong><br \/>\nThe data includes the entire www\/httpdocs folder.<br \/>\nYou can often export the database through phpMyAdmin or using a <a href=\"https:\/\/www.wpbeveiligen.nl\/backup-maken-wordpress\">backup plugin<\/a>.<\/li>\n<li><strong>Try to update as much as possible<\/strong><br \/>\n<a href=\"http:\/\/www.wordpress.org\" rel=\"nofollow noopener\" target=\"_blank\">Download WordPress<\/a> and manually upload it to the server (using an <a href=\"https:\/\/www.wpbeveiligen.nl\/filezilla-ftp-hoe-werkt-dat\">FTP program<\/a>). Also, replace the plugins with new ones and, if possible, the theme.<br \/>\nNote: Updating the theme may sometimes cause style changes. Only consider this if you have the necessary knowledge to adjust the settings\/style.<\/li>\n<li><strong>Check your server for backdoors and unwanted files<\/strong><br \/>\nA hack never comes alone. Besides the modifications to your website through advertising injection, there are usually files and codes (see <a href=\"https:\/\/www.wpbeveiligen.nl\/plugins\">WPbeveiligen detection<\/a> tool) on the server that allow the hacker and their script to regain access to your website.<\/li>\n<li><strong>Check all plugins and themes for vulnerabilities<\/strong><br \/>\nYou can do this using <a href=\"https:\/\/www.wpvulndb.com\/\" rel=\"nofollow noopener\" target=\"_blank\">this website<\/a>.<br \/>\nIf your plugins contain vulnerabilities, it&#8217;s recommended to use alternatives.<\/li>\n<li><strong>Secure your WordPress website<\/strong><br \/>\nThe hack has entered your website, and without security, it will happen again.<br \/>\nInstall a <a href=\".\/plugins\">good security plugin<\/a> on your website and configure it.<\/li>\n<li><strong>Afterwards, verify that your website is fully restored<\/strong><br \/>\nYou can do this through <a href=\"https:\/\/www.wpbeveiligen.nl\/google-webmaster-tools-gebruiken\">webmaster tools<\/a> or using the <a href=\"https:\/\/sitecheck.sucuri.net\/\" rel=\"nofollow noopener\" target=\"_blank\">Sucuri malware scan<\/a>.<\/li>\n<\/ol>\n<p>Good luck!<\/p>\n<p>It&#8217;s a significant task that requires knowledge and patience. If you&#8217;re unable to do it, you can <a href=\".\/contact\">contact us<\/a>. We restore WordPress websites on a weekly basis and provide a guarantee for our services!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>WordPress is often hacked through vulnerable scripts. We still call it hacking because there has always been someone who wrote an automated script, and their advertisements appear on your website due to the hack. In fact, it&#8217;s more automation than hacking, as the script works 24\/7 without the hacker being involved anymore. But once you [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":8503,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[198],"tags":[],"_links":{"self":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/21564"}],"collection":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/comments?post=21564"}],"version-history":[{"count":0,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/21564\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media\/8503"}],"wp:attachment":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media?parent=21564"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/categories?post=21564"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/tags?post=21564"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}