1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

someone trying to hack my site. what do?

Discussion in 'BlackHat Lounge' started by Panoush, Jul 26, 2014.

  1. Panoush

    Panoush Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 6, 2014
    Messages:
    291
    Likes Received:
    86
    Occupation:
    Internet Marketer & Social Media Manager
    Location:
    somewhere in europe
    got an email from wordfence securtiy,( thank god i have that) and was notified someone (dutch IP) tried to login into my admin panel 20 times til they got blocked, they tried logging in using only a " . a qoutation mark which is strange..

    Now i am a bit worried cuz my site has just started doing well, what steps can i take to make my site more secure? I am going to change login a attempts to 3 now but i know from experience of being blocked from a clients site that you can just use a free proxy to try again..

    and if someone did get in, is it possible to see any changes that were made? like subtle code changing the adverts to their own or something?
     
  2. Panoush

    Panoush Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 6, 2014
    Messages:
    291
    Likes Received:
    86
    Occupation:
    Internet Marketer & Social Media Manager
    Location:
    somewhere in europe
    ok shit, i have just realised that i actually have 15 emails from wordfence in the last 3 hours notifying me that 15 other IP's are continusaly trying to login and getting blocked after 20 attempts.. What the fuck is going on ? :/
     
  3. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,112
    Likes Received:
    28,524
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
    • Thanks Thanks x 1
  4. Panoush

    Panoush Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 6, 2014
    Messages:
    291
    Likes Received:
    86
    Occupation:
    Internet Marketer & Social Media Manager
    Location:
    somewhere in europe
    thanks mate! will install them all now
     
  5. akacash

    akacash Jr. VIP Jr. VIP

    Joined:
    Jan 16, 2010
    Messages:
    805
    Likes Received:
    575
    Location:
    The Beach, USA
    Make sure the email you have registered for the account has 2-step authorization as well. Most people don't realize that the way they get owned is through the recovery email. Something like AOL is a complete joke and extremely easy to access. Then they just send themselves a password reset and take complete control of your site. Yahoo and Google are a little better since they offer the 2-step auth.
     
    • Thanks Thanks x 2
  6. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,112
    Likes Received:
    28,524
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:

    Read the instructions for each of them and set up cloudflare and you should be OK.
    I used to get a lot of Bot attempts on my sites but after installing those with wordfence, it stopped them overnight.
    Your server will still get the attempts if you check the logs but you should now have sufficient protection.
    There are some other good guides on WP Security, have a look around and you will find them:

    http://lmgtfy.com/?q=site:blackhatworld.com+wordpress+security
     
    • Thanks Thanks x 1
  7. sohom

    sohom Senior Member

    Joined:
    May 26, 2013
    Messages:
    981
    Likes Received:
    175
    Location:
    not in Past
    you can use free or premium WP plugins
    but dont forget to check their reviews & reliability
    most of the time, wp site get hacked by its plugins, so check lynda course about Wordpress Security,they only suggesting tested & trusted WP plugins
    and yes Cloudflare is always a good option