My website was hacked. What should I do?

A hacked website is really frustrating - it's troublesome for your business and visitors, and removing a hack can be time-consuming. Let's go through the fastest and easiest way to fix your website.

Let's check for warnings

If you’ve seen "This site contains malware" or "The site ahead contains harmful programs" in connection with your site, there’s definitely a problem. To check further, go to https://sitecheck.sucuri.net and enter your domain name.

  • If your website’s been hacked, you’ll see a warning here.
  • No warning? It's less likely (but still possible) that your website has been compromised.

Change your passwords

If your site's been hacked, you need to immediately change all of your passwords. We recommend using strong passwords.

Note: To make sure you use the right instructions, find out what type of hosting account you have.

Your hosting type Passwords to reset
Linux Hosting with cPanel Primary FTP, secondary FTP, databases, apps like WordPress or Joomla
Windows Hosting with Plesk Primary FTP, secondary FTP, databases, apps like WordPress or Joomla
Web & Classic Hosting Primary FTP, secondary FTP, MySQL databases, MS SQL databases, apps like WordPress or Joomla

Restore from backup

If you have a backup of your website (and database) that you know wasn't corrupted, you should re-upload it to your hosting account.

If you have Website Backup, you can easily do this for your cPanel or Plesk account.

If you don't have a backup tool, after resolving the issue we recommend adding Website Backup to your account.

Remove the hack

It's nearly impossible for anyone to reliably remove malware from a website by hand. To remove the compromise from your files, we recommend using an application like Express Malware Removal.

Identify & fix the weakness

To prevent your site from getting hacked again, you should identify how your site was compromised. There are two types of weaknesses: passwords and structural problems.

Passwords

Most hacks happen because the attacker was able to guess your account's password by brute force. By simply changing your password (and using a stronger one this time), you can prevent these attacks from succeeding in the future.

Structural

These types of weaknesses require thorough testing to identify. There's a lot of security software that can perform these types of scans but, again, we recommend Express Malware Removal. It can identify a number of different issues, as well as help you fix them.


이 글이 도움되었나요?
피드백을 보내주셔서 감사합니다. 고객 서비스 담당자에게 문의하시려면 지원 전화 번호 또는 위의 채팅 옵션을 이용하시기 바랍니다.
도와드릴 수 있어 기쁩니다! 더 도와 드릴 것이 있나요?
그것 유감스럽습니다. 혼동이 되었던 사항 또는 솔루션이 고객님의 문제를 해결하지 못했던 원인을 알려주세요.