1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Has anyone had there wordpress hacked?

Discussion in 'Blogging' started by webwhizz, May 26, 2011.

  1. webwhizz

    webwhizz Power Member

    Joined:
    Apr 3, 2011
    Messages:
    706
    Likes Received:
    658
    Occupation:
    P-R-0
    Location:
    scotland
    Today i found 3 of my blogs have been hacked when i goto log in, it takes me to this site http://lypills.com/

    i dont know how they done it i dont appear to have any virusus, and been changing my passwords every week, i wonder if its something todo with having the comments on auto aprrove? its so annoying think my only option it to reinstall them

    anyone else had this?
     
  2. SahL

    SahL Elite Member

    Joined:
    Jan 8, 2011
    Messages:
    1,594
    Likes Received:
    1,296
    Occupation:
    ★SEO expert and ★Sexpert
    Location:
    Bombay
    Home Page:
    which theme and plugins did use, check them.
     
  3. webwhizz

    webwhizz Power Member

    Joined:
    Apr 3, 2011
    Messages:
    706
    Likes Received:
    658
    Occupation:
    P-R-0
    Location:
    scotland
    Hi
    i had ctr theme and just one plugin called unique article wizard, never got round to adding anymore, i cant get to the admin it just redirects to that site, i can get into cpanel but cant see where it is, i thought it might be wpadmin page, but seems fine ......
     
  4. Decent WebArt

    Decent WebArt Newbie

    Joined:
    May 3, 2011
    Messages:
    22
    Likes Received:
    1
    I got the same trouble with my wordpress blogs.There is no any specific solution but you should update your site and must install captcha filled plugin in login of your site.
     
  5. fnd80

    fnd80 Regular Member

    Joined:
    Oct 27, 2010
    Messages:
    202
    Likes Received:
    79
    how come people don't know the difference between "there" "their" and "they're" anymore?
     
  6. Katarina

    Katarina Junior Member

    Joined:
    Jan 25, 2011
    Messages:
    119
    Likes Received:
    270
    Occupation:
    Blackhat Queen
    Location:
    manila
    Its because of the rapture. English-proficient people have already ascended with Jesus.

    Kidding aside, are you using free themes? Because I dont know if this is accurate but I heard from someone that you can get easily hacked by using a theme (usually free and can easily be found on the net) that is really designed with a back door of some sort. Check the link between your blogs? Using the same theme? Plugin? Sql injection maybe?
     
  7. accelerator_dd

    accelerator_dd Jr. VIP Jr. VIP

    Joined:
    May 14, 2010
    Messages:
    2,443
    Likes Received:
    1,007
    Occupation:
    SEO
    Location:
    IM Wonderland
    Were you updating Wordpress regularly? If yes, also might be plugins.

    Other then that, if it's dedicated hosting maybe some of your services is outdated. If shared, check if any other hosting package on your server is having problems (ask support).


    Other then that, might be themes, but that is rarely the case in my experience.
     
  8. webwhizz

    webwhizz Power Member

    Joined:
    Apr 3, 2011
    Messages:
    706
    Likes Received:
    658
    Occupation:
    P-R-0
    Location:
    scotland
    i Reinstalled them, they all good now, i took your advice and installed a captcha plugin,
    and im not using any FREE themes just ctr theme that bought.

    im sure it was to do with the uniquearticlewizard plugin i was using.

    it was all up updated, i change passwords on regular basis i use avast which says i have no viruses, so its a bit of a mystery.

    Thanks for your help :)
     
  9. Gold Mike

    Gold Mike Registered Member

    Joined:
    Jan 5, 2011
    Messages:
    66
    Likes Received:
    10
    There's some free security plugins available that you could install too. I had a WP site get hacked a few months ago, I installed one called Bulletproof Security and haven't had any more issues.
     
    Last edited: May 27, 2011
  10. seoguy81

    seoguy81 Senior Member

    Joined:
    May 18, 2011
    Messages:
    859
    Likes Received:
    190
    Occupation:
    Full time IM
    Location:
    My Desk
    Home Page:
    You might already know about this, but first associate the username 'admin' with a secondary email address of your choice and assign admin to subscriber role. User a different username to be the blog administrator.

    Also use different passwords for your WP login and phpmysql db's to be safe.

    I had my blog hacked mid last year and if not for the site back ups I would have been really screwed. Keep all your plugins up to date and stay away from anything that has base64 encoding.
     
  11. clau82

    clau82 Junior Member

    Joined:
    Aug 9, 2009
    Messages:
    158
    Likes Received:
    23
    This has nothing to do with UAW plugin. I use it on many blogs and never had issues with it. Your looks more like a htaccess hack or other type that used some unplugged security hole. Could also be a hosting account hack and having nothing to so with WP. I was hacked 2 times and each time was a hosting issue - either security or improper settings. that host never admitted to anything but the hackers bragged about it on some forum...