Website Defacing

  • Unknown's avatar
    mustapha10x · Member ·

    Someone decided to deface my WordPress site that I have ran for years. We have spent a lot of money on this site, I was wondering if it was possible to restore the posts that were deleted. They deleted 1 years worth of posts. Link to website is Doritoscp.com

    The blog I need help with is: (visible only to logged in users)

  • Unknown's avatar
    jjchrisdiehl · Member ·

    Hello,

    The most likely scenario is someone within your user base with access to the admin interface has done this, you may want to restrict access to your account. I’ll tag this as modlook to have a moderator look into it. You may wish to contact WordPress directly, here.

  • Unknown's avatar
    timethief · Member ·

    @mustapha10x
    What is the exact URL starting with http:// of the site to which you refer please?

  • Unknown's avatar
    timethief · Member ·

    @@mustapha10x
    Okay now I see the URL above. https://doritoscp.com/ and it’s a club penguin site.

    Exactly which username account registered the underlying .wordpress.com site and purchased the upgrade for it?

    How many Admins do you have? Only one is recommended but club penguin sites are notorious for having multiple admins who fight with each other and delete content and even sites. Another thing they are notorious for is being sucked into appointing Admins who are deliberately focused on site hijacking.

    re: hacked accounts and blogs

    If anyone is posting anything to your blog or removing anything from it, or changing anything in it, or if your blog has been deleted and you did not delete it, then it’s most likely that you have provided them with the ability to do so, either deliberately by adding them as official users, or by allowing them access to your login information, or by posting content that makes it easy for them to guess what your log-in information is.

    For you the question that needs to be answered is: Who, aside from me, has access to my login information?

    Go to your email program immediately and change the password to a very difficult one because that’s how many hackers gain access to blogs.

    Read > http://en.support.wordpress.com/security/

    Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password
    You can also reset your password via your Settings tab on the WordPress.com home page:
    http://wordpress.com/#!/settings/

    Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.

    Use two step authentication http://en.support.wordpress.com/security/two-step-authentication/

    Run a security scan on your computer. See here to run a security scan http://geekflare.com/online-scan-website-security-vulnerabilities/

    Never leave your computer logged into your blog and walk away from it. Always log out properly.

    I was wondering if it was possible to restore the posts that were deleted. They deleted 1 years worth of posts.

    The answer to that is no Staff will restore content. You may be able to use Googles cached docs to copy paste content into new posts and pages. You may be able to use Internet Archives Wayback Machine to do the same.

    P.S. Staff have records of who did what under which username and login information and when they did it. This thread with modlook for a Staff follow-up. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it. Note that there is a backlog and be patient while waiting.

  • kokkieh · Staff ·

    Hi there,

    Looking at the logs for your site, in the past day 5 different admins have been added to your site, each one invited by another admin who was only added minutes or hours earlier.

    The posts were deleted by an admin, bigmoeeljaroudi, who was added to the site by another admin. We do not restore a backup in a case where an authorised user of the site deleted content. If you don’t want your content to be lost, don’t add people you don’t know as admins on your site.

    I see there are a number of posts still in the trash. You can try to restore them from this page:

    https://thedoritosofcp.wordpress.com/wp-admin/edit.php?post_status=trash&post_type=post

  • Unknown's avatar
    mustapha10x · Member ·

    Thank you so much for your help. We have learned from our mistakes and we will have better security! Thanks again, you guys are awesome.

  • Unknown's avatar
    mustapha10x · Member ·

    Thank you so much for your help. We have learned from our mistakes and we will have better security! Thanks again, you guys are awesome.

  • kokkieh · Staff ·

    You’re very welcome.

    Try to keep the number of admins and editors on your site to a minimum. If you need people to be able to contribute content, add them as authors instead. And insist that they all use strong passwords and two-factor authentication. Then something like this is less likely to happen.

  • The topic ‘Website Defacing’ is closed to new replies.