My page has been hacked
-
My page has been hacked and I can’t access to Admin section. How do I get access back? It’s currently being used to sell some dodgy Nike Jordan’s…
-
I cannot see evidence of that here https://splishsploshsplash.wordpress.com/
What is the URL of the site you refer to? -
re: hacked WordPress.COM accounts and blogs
If anyone is posting anything to your blog or removing anything from it, or changing anything in it, or if your blog has been deleted and you did not delete it, then it’s most likely that you have provided them with the ability to do so, either deliberately by adding them as official users, or by allowing them access to your login information, or by posting content that makes it easy for them to guess what your log-in information is.
For you the question that needs to be answered is: Who, aside from me, has access to my login information?
Go to your email program immediately and change the password to a very difficult one because that’s how many hackers gain access to blogs.
Read > http://en.support.wordpress.com/security/
Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password
You can also reset your password via your Settings tab on the WordPress.com home page:
http://wordpress.com/#!/settings/Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.
Use two step authentication http://en.support.wordpress.com/security/two-step-authentication/
Run a security scan on your computer. See here to run a security scan http://geekflare.com/online-scan-website-security-vulnerabilities/
Never leave your computer logged into your blog and walk away from it. Always log out properly.
P.S. Staff have records of who did what under which username and login information and when they did it. I flagged this thread with modlook for a Staff follow-up. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it. Note that there is a backlog and be patient while waiting.
-
Hi there,
If you can post here, that means you’re logged into your WordPress.com account and should be able to access the admin area of your site, https://splishsploshsplash.wordpress.com/
I can also see no evidence of what you’re describing on that site. The last post on that site was in August 2013 and there are no logs of posts being created or deleted recently.
If you’re speaking of your site at splashking.co.uk, that site is not hosted by us, so we have no way to access it or help you with it. You appear to have that site connected with the Jetpack plugin, but that does not give us access to that site. If someone managed to hack that site, you will need to fix it yourself via your web host’s admin interface. Please post in the WordPress.org forums for help with that site:
http://wordpress.org/support/Also note that as you’re using that domain with a self-hosted site, you really don’t need the mapping upgrade that you have been paying for. You only need the mapping upgrade if you want to use the domain with a WordPress.com site, not with a self-hosted site.
-
Hi guys – the blog is http://www.splashking.co.uk – I’m not totally sure what you mean about not needing the paid upgrade?
I’ve changed the password and enabled the two-step authentication. I’ll chase it up with GoDaddy as I bought the URL from them.
Cheers
-
You have a domain mapping upgrade on https://splishsploshsplash.wordpress.com/, but you are using the domain with a site hosted by GoDaddy, so there is no reason to have that mapping upgrade. You are essentially paying for a service you don’t use. You only need the mapping upgrade if you want to connect your domain to a WordPress.com site, not if you’re using the domain with a self-hosted site.
And as your site is hosted with GoDaddy, we can’t help you with getting it back online, as previously stated. While your site is connected to your WordPress.com account, it is not hosted by WordPress.com so we don’t have any access to it and can’t help you fix it.
-
I have a wordpress account and ive been hacked. i got an email saying a new user has been created by a name i dont know and now im locked out my site.
The message i get is: “a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request”.
I have no access to my dash board. i changed my password in password in wordpress and still nothing. what to do?
-
@moneybags3x
We can do nothing to help you without the URL of the site you’re referring to. -
OK, I still don’t fully understand but the bonus is that I’ve got the website back. I now need to go through the file manager and delete all folders that shouldn’t be there.
Thanks for your help.
-
I’m glad to hear you’ve managed to get back into your site.
What exactly don’t you understand? I’d be happy to try and explain.
Or you can just take me at my word that you really don’t need to keep paying for a domain mapping upgrade here, as it’s not doing anything. Just trying to save you an unnecessary expense :)
-
I’ll take your word for it – I suppose this bit I don’t understand is how to stop paying for it? I didn’t know I was in the first place.
-
That upgrade was set to auto-renew each year in July. I’m guessing you originally bought it for your WordPress.com site, and never cancelled it when you moved to a self-hosted site.
I have removed it for you now. Unfortunately it’s beyond the point where it’s possible for me to issue a refund for the last renewal, but at least you won’t be charged for it again this year.
-
@kokkieh i fixed it..thanks for replying…. http://www.streamlit.com …ithemes keeps on blocking my ip address so i disabled it to get back on. I dont know if i should enable it again though…any advice?
-
@shefftyke
You’re very welcome :)@moneybags3x
My knowledge of self-hosted sites is very limited. I suggest you ask in the WordPress.org forums instead – they’ll know better about stuff like this.
https://wordpress.org/support/
- The topic ‘My page has been hacked’ is closed to new replies.
WordPress.com Forums 