Hi everyone. I got a scary email from Google Search Console today telling me that someone else was added as an owner to my site. I’m trying to fix this by proving I own the domain through DNS records.
The attacker somehow got into my WordPress admin area and removed all my plugins. My entire site is basically ruined now. I’m pretty new to running websites and this is my first major security issue.
It looks like I have to rebuild everything from scratch. Can anyone recommend good security and backup plugins that actually work? I really didn’t expect something like this to happen to me.
Went through this exact thing last year - learned a ton from it. Don’t restore from your old files when rebuilding. Download a fresh WordPress install instead since malware loves hiding in weird spots you’d never think to check. I set up Cloudflare’s firewall after my breach and it’s been blocking tons of attack attempts since. Check your hosting logs to see how they got in originally. Mine showed compromised FTP credentials and a sketchy theme. Stop storing backups on the same server - keep them somewhere else entirely. The upside? You get to rebuild with proper security from scratch. Write down everything you set up so you don’t forget to maintain it later.
that sux, i feel ya! i went through this too. switched to managed wp hosting - costs more but they got security covered. also, make sure ur passwords are strong & unique for each site. learned my lesson the hard way as well!
Getting hacked is a tough experience, but it’s an opportunity to strengthen your site’s defenses. First, ensure you change all relevant passwords, including hosting control panel and database access. Enabling two-factor authentication adds an extra layer of security. Many breaches occur due to weak passwords or outdated plugins. For ongoing security, I recommend Wordfence Security, which has proven effective at detecting threats early on. Additionally, UpdraftPlus is fantastic for backups, allowing you to keep your data safe automatically. Lastly, before reinstalling anything, make sure to thoroughly scan your files to eliminate any hidden backdoors from hackers. Your hosting provider might offer malware scanning services, which can be beneficial in ensuring a full clean-up.
This topic was automatically closed 4 days after the last reply. New replies are no longer allowed.