The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Compromised Wordpress site Issues

Discussion in 'Security' started by bmango, Jan 31, 2016.

  1. bmango

    bmango Registered

    Joined:
    Jan 31, 2016
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Hi,

    I have a Wordpress site that is repeatedly being hacked. Unauthorised files are being uploaded to the site (not via ftp). I am continually restoring the site from backups every time this happens (about once every two weeks).

    I keep the website up to date (wordpress and plugins) but there must be a flaw somewhere which they are using to get in each time.

    The website is on a virtual server and I have root access. I have very little server admin experience and specialise in website building not servers.

    Can anyone give me any advice on what settings I could change to help prevent the hacking, or is there anyway I can identify how the hackers are able to get into the site from the server logs?

    Thanks in advance
     
  2. keat63

    keat63 Well-Known Member

    Joined:
    Nov 20, 2014
    Messages:
    765
    Likes Received:
    20
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Host Access Control might help, along with CSF.
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,475
    Likes Received:
    202
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    You should be asking about this over at the wordpress support site. Sounds to me like at least of your "up to date" plugins, probably isn't.
     
  4. bmango

    bmango Registered

    Joined:
    Jan 31, 2016
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Many thanks keat63 and infopro for your replies. I will look into the Host Access Control and CSF. I have done quite a lot of research on the Wordpress forums, but it probably is a good idea to create a post about it there as well.

    Thanks again.
     
Loading...

Share This Page