foyshal

Newbie
Joined
Nov 29, 2022
Messages
1
Reaction score
1
My websites got infected with this shit. I had to manually clean around 20 Wordpress sites from the same server.
The problem is still persisting and Bluehost does not really offer any help unless I pay for their Security Program.

My question is, for anyone who ever encountered or went through this bullshit:

1. Is it possible to fully get rid of the malware?
2. What could be security breaches into Wordpress ? ( nulled or cracked themes or plugins, weak passwords, cheap SSL ? )
3. How are the hackers benefiting from this ?
 
1) it is as people who do seo hacks are usually script kiddies and not real hackers, so their modifications can be detected.
2) a lot of things, too many to list. like you already said, nulled themes/plugins often contain backdoors. then outdated plugins and themes can also have security issues. weak passwords are also a problem of course.
3) its usually for SE spam, but can also be for phishing.
 
Just avoid Bluehost, HostGator, Hostmonster, or any hosting companies owned by the EIG company.

Not only are their prices ridiculous, but their servers are slow and weak (security-wise).

When I used to use them, my websites would often get hacked despite I did not use any hacked plugins (just HTML files!!!). When I opened a ticket or live chat, they kept pushing the blame to me that I downloaded null scripts or something. The reason for them to do so is so they won't admit it is their fault so they won't have to refund you (as according to their TOS). Even my friends who used hostgator experienced the same thing - their sites got hacked - and they said they can help to clean provided they pay them a "fee". What's wtf is they COULD'NT fix it and most of her blog contents were missing and the whole wordpress site was wonky. They just charged her for the fix and ignored her. She got so pissed she just migrated to another webhost on my advice.

My advice is the same to you - migrate to another webhost. Even Namecheap has better security and awesome customer support.

Their business plan for all their subsidiary webhost companies are the same: offer a very good deal on webhost plans with freebies that seems to good to be true. Then when it is time for renewal, the prices get ridiciulously expensive. Why? Because they know most people are lazy to migrate by then or just don't know how after maintaining their website for a year. The cycle continues.
 
My websites got infected with this shit. I had to manually clean around 20 Wordpress sites from the same server.
The problem is still persisting and Bluehost does not really offer any help unless I pay for their Security Program.

My question is, for anyone who ever encountered or went through this bullshit:

1. Is it possible to fully get rid of the malware?
2. What could be security breaches into Wordpress ? ( nulled or cracked themes or plugins, weak passwords, cheap SSL ? )
3. How are the hackers benefiting from this ?
Post in hire a freelancer section
 
Another overlooked problem sometimes is that your account credentials are hacked or maybe some malware on your pc who stole your FTP account.
 
Just avoid Bluehost, HostGator, Hostmonster, or any hosting companies owned by the EIG company.

Not only are their prices ridiculous, but their servers are slow and weak (security-wise).

When I used to use them, my websites would often get hacked despite I did not use any hacked plugins (just HTML files!!!). When I opened a ticket or live chat, they kept pushing the blame to me that I downloaded null scripts or something. The reason for them to do so is so they won't admit it is their fault so they won't have to refund you (as according to their TOS). Even my friends who used hostgator experienced the same thing - their sites got hacked - and they said they can help to clean provided they pay them a "fee". What's wtf is they COULD'NT fix it and most of her blog contents were missing and the whole wordpress site was wonky. They just charged her for the fix and ignored her. She got so pissed she just migrated to another webhost on my advice.

My advice is the same to you - migrate to another webhost. Even Namecheap has better security and awesome customer support.

Their business plan for all their subsidiary webhost companies are the same: offer a very good deal on webhost plans with freebies that seems to good to be true. Then when it is time for renewal, the prices get ridiciulously expensive. Why? Because they know most people are lazy to migrate by then or just don't know how after maintaining their website for a year. The cycle continues.
Broski Namecheap VPS/Dedi servers are beasts, never ha problems with them and they properly secure the vps/dedis, only one i found on par with them is hetzner
 
Why didn't you install some wordpress security plugin?
The hackers benefit in many ways, so redirect all your traffic to CPA offers about virus infected. Man there is so much stuff.
 
Back
Top
AdBlock Detected

We get it, advertisements are annoying!

Sure, ad-blocking software does a great job at blocking ads, but it also blocks useful features and essential functions on BlackHatWorld and other forums. These functions are unrelated to ads, such as internal links and images. For the best site experience please disable your AdBlocker.

I've Disabled AdBlock