What to do if your site is hacked

Sunday, 10 March 2013 00:18

So, since you're reading this, it means your site is likely been compromised and now you need to eliminate the consequences of breaking. Who and what could hack your site, you can read in our previous article, "How and why to break sites", and here is how to eliminate the consequences of breaking, we will try to summarize in this article.

Initially, we want you to understand - that if your site is hacked, it means to him that something is wrong and it can crack again and again. That is, before proceeding to eliminate the effects - initially need to determine and correct the cause cracking. Otherwise you hacked tomorrow, or even at a time when you are eliminating the consequences of breaking.

90% of break-ins Internet sites linked to the vulnerabilities in the software of these sites, so blunder owners in addressing the consequences of the site is to restore from backup. After all, with this vulnerability will not disappear and also when repairing the backup replaced files that were previously on the site and the files that are filled cracker. And it may be different web shells, backdoors, spam scripts, doorways and so on. And besides, often after restoring from a backup of the site to determine the cause of hacking becomes many times more difficult.

Therefore, the primary task - a search on the server extraneous files. You can search in different ways, such as antivirus software, search for files by date, search the contents of files, and so on, but 100% - of finding none of these methods can not guarantee. In turn need to try everything, because anti-virus signatures and seek to find their only known malicious code, search by date can also be useless, since there is a command touch, which allows an attacker to this date change easily, and malicious code file may look harmless enough, even search by dangerous content files you can not find it. We are in our practice we use specialized software that combines all these methods, as well as a manual visual analysis of suspicious files found. Only this way is the most complete. No need to also keep in mind that malicious code can be inserted in the files of the site itself, or even in the picture, so they should also be checked. By the way, breaking through the introduction of malicious code in the picture in the recently very popular.

The nature and place of discovery of found files can usually be judged on the causes of cracking, excellent assistant can also be a web server logs, so the second task - is to eliminate vulnerabilities. There usually helps install software updates from the developers of CMS on your site, as well as add-ons used. If your site is not on one of the most popular CMS, there will only have a full visual inspection of the entire code. Also, the reason may be a vulnerability in the server software, and then it must also be updated and properly configured, which usually includes the responsibility of the company's employees, to provide hosting services for your website. If they are in their duties fail, from companies you just need to run. Do not forget about the possibility of stealing passwords from your computer, so the computer is necessary to fully test the quality Antivirus and also upgrade your software.

So - the vulnerability is found and eliminated extraneous files deleted from the server, now the third task - it is cleaning the site files from viruses (if any) or the restoration of the site. After that you need to change all passwords without exception: panel hosting, FTP, SSH, a database administrative panel of the site; and feel safe. And most importantly - continue to be careful not to like.

Our company provides services to address the consequences of breaking, cleaning sites from viruses and malicious code, eliminate vulnerabilities sites, so if you wrote above is not very clear, either you do not have time to do this, we will be glad to see you among our customers. High quality, confidentiality and adequate cost of services guaranteed.

Contact - we will help you!


Leave a comment

  • Payment
    Methods:
  • visa
  • mastercard
  • qiwi
  • webmoney
  • yandex money
  • sberbank
  • mts bank
  • zpayment
  • liqpay
  • alfabank white
Copyright © 2012 - 2024 WebPatron Ltd. All rights reserved.