Sites hacked by the Bangladesh Cyber Army! Can't log in!!

kuryakin

kuryakin

Regular Member
Joined
Jun 26, 2012
Messages
216
Reaction score
47
Hi folks.
I have a couple of wordpress sites that have been hacked by the Bangladesh Cyber Army. I'm pretty new to IM and have limited (but growing) tech knowledge.. As far as i can see from the outside, all they have done is place a logo with a link to a Japanese shopping site on the front page.

But anyway, i can't log in. I have tried changing my password/ username in PHPmyadmin but it makes no difference. Does anyone have any ideas what to do?

Would be much appreciated.
 
Advertise on BHW
Try to recover your password. Click on forgot my password, and follow the guide, to make wordpress send you a link resetting link to your email.
 
Is it a vps, a server or just shared hosting? If shared hosting you will need to ask help to the server administrator....

If you are root, you can change the phpmyadmin password.

AT ANY RATE YOU OR YOUR HOST HAVE NOT UPDATED AND PATCHED! THAT IS WHY THEY CAN USE AN EASY BOT TO MASS-HACK THOUSANDS OF SITES.

UPDATE!!!!!

Next time try to get hacked by a cooler country at least....Iran, for example)))
 
Thanks people.. It is on shared hosting.. I did manage to access PHPmyadmin and change the password but it didn't work.. However i have managed to do exactly that before i was hacked, so i think the hackers have done something else preventing me from changing it back..

And yes, i have learned my lesson regarding updates! Duly noted!

Not sure if i have server permissions, how do i check?

Thanks
 
When I had similar problems I've hired some guy from Odesk to solve the entire problem. From that moment I'm always taking safetu measures. But I guess it's never too safe :)

Once everything is solved, check some security plugins at least.
 
chmod index.php 644 its better so you can avoid mass hack attemp.
 
PM your skype, and I'll check it out for you. They probably just shelled your domain, and have access to your entire database/ftp.
 
you mean you can't login to wordpress dashboard?

Go to phpmyadmin, click your wordpress database name, click users, scroll down and click edit.
on the user_pass column, on the first box (drop down menu) choose MD5
the next box is where you type your password.
it will have some random characters there, just delete and type your password.
make sure the username and email is correct (not changed by attacker).
Scroll down, press Go button.
Try to login again.
 
Go to your hosting company and explain you have been hacked. Hopefully they have backups and can restore you to a point pre-hack.
 
something very similar happened to me like this first day I launched my website which I spent 6 monts working on. very frustrating

I got my programmer to make wp-admin only accessible from 5 ip addresses. If you try to access it from a different IP you get an error message.
I also made the server password extremely difficult
I also check once a week at least for updates to wordpress themes and plugins. Also deleted any plugins that i did not need
no problems since.
 
ascura said:
you mean you can't login to wordpress dashboard?

Go to phpmyadmin, click your wordpress database name, click users, scroll down and click edit.
on the user_pass column, on the first box (drop down menu) choose MD5
the next box is where you type your password.
it will have some random characters there, just delete and type your password.
make sure the username and email is correct (not changed by attacker).
Scroll down, press Go button.
Try to login again.
Click to expand...

Make sure to change over your password to a MD5 hash as well, or this might not work.
 
Thanks, i can log in again at least.. still cant figure out how to get the link they left off my homepage though..
 
I am making progress (slowly) but my new problem is that i can't update anymore.. When i try to update through the dashboard i get the message 'page not found'
Any advice? Maybe i should let a pro deal with this but i enjoy figuring things out..
 
Copy all your theme files. Then Install fresh wordpress copy and restore your theme files.
 
Ok, thanks, so does that mean i copy the wp-content folder and the database? Anything else? I've never done this before..
 
Advertise on BHW
You must log in or register to reply here.
Sign up now!

Main Menu

Home Main Forum List Black Hat SEO White Hat SEO BHW Newbie Guide Blogging Black Hat Tools Social Networking Downloads

Marketplace

Content / Copywriting Hosting Images, Logos & Videos Proxies For Sale SEO - Link building SEO - Packages Social Media Social Media - Panels Web Design Misc

Making Money

Affiliate Programs Hire a Freelancer Making Money Pay Per Click Site Flipping

BlackHatWorld

BHW Merch Forum Suggestions & Feedback Introductions Lounge Dispute Resolution

Other

Domain Name Forum IM Journeys Web Hosting Newsletter
Back
Top