• About
  • Write For Us
  • Contact
  • Top 50 Photography Blogs
  • Resources
  • Forum

IndustryDev

  • Design
    • Photoshop
    • Lightroom
    • Camera Raw
    • Bridge
  • Development
    • HTML
    • CSS
    • Javascript
    • PHP
    • Dev Tools
    • WordPress
  • Photography
  • Blogging
  • Technology
  • Inspiration
You are here: Home / Wordpress / Wordpress Website Hacked and is Now Redirecting

WordPress Website Hacked and is Now Redirecting

April 21, 2019

Earlier this week, I visited one of my WordPress blogs and to my surprise, I found that it was redirecting to a website with the URL of DoNotifyFriends[dot]info. I freaked out a bit and was just about to place a support ticket with my hosting provider (LiquidWeb) when I realized I could restore the website to an earlier version through my backup provider (CodeGuard). I was lucky that I hadn’t written any new posts or changed the site any in the past week, so I went ahead and restored the site to two days previous. That worked perfectly and I was a happy camper.

Just as luck would have it, I woke up two days later and the blog was hacked again. This time, the domain was forwarding to BeMyLittleTeddy[dot]info and Gearbest[dot]com. By this point, I was pretty angry and I wanted to find out what was going on. I sent in a ticket to the site host after restoring the website again to a few days previous. This was their reply:

Typically these happen from outed or insecure plugins. A few plugins recently have been getting hit hard. With a couple, even if uninstalled, they leave items behind in the database that still allow a back door to be opened. With the site not redirecting, there is little we can go on now as we would need to see the site hacked and redirecting to start to track anything down.

Totally understandable. I was hoping they could look in the log files and get an idea of what happened. That’s not likely to help much since I’m sure hackers use all sorts of IP addresses.

After this, I decided to install a security and firewall plugin on the website. After reading all sorts of reviews, I installed the WordFence plugin and am hoping this helps.

I’m wondering if anyone else has had their WordPress website or blog hacked so it redirects to some spammy sites. This is getting on my nerves.

UPDATE

I’ve been checking out some tech forums and have found the culprit! Lot’s of people are getting hit by this hack and it appears to be coming from an abandoned plugin. Sites with this old plugin installed are pointing to these spam domains. Everyone is looking for a solution.

The post I read that helped the most stated that the author disabled all of their plugins while the website was still redirecting. After they did this, the site was fine and it didn’t appear to be hacked anymore. Then, they began activating each plugin, one by one, in an effort to see which one was causing the redirect.

In their case, the malicious redirect was caused by the yuzo-related-post plugin, which, as I just discovered, I have installed on my site. I also discovered that this Yuzo Related Post plugin has been discontinued since March 30, 2019. I not only turned the plugin off, but I also uninstalled it. I hope this helps and I don’t get hacked again. I’m just concerned that, as my host stated, this plugin didn’t leave anything behind in the database that is keeping a back door open.


Comment: Some months back I faced this issue and didn’t get a good response from my hosting provider (Shared hosting), just for the security reasons I have moved to WordPress hosting with Cloudways managed the platform, They offer security and 24/7 daily backup, Nothing went wrong yet so far.

Reply: I guess you’re going to get bottom shelf support when you go with shared hosting, although it really does depend on what options you have, even if you’re using a dedicated server. I use CodeGuard for backups and restored my website from an earlier version of it and I’m lucky I had that version. I suppose I could have waited to learn which file was targeted and simply removed that one. The news came out with that information in just a few days. In the meantime though, my site would have been redirecting to some strange places.

What’s the moral of the story? Stay away from shady WordPress plugins that are no longer being developed and always have backups of your websites.

Comment: I had the same issue a year back when I was hosted on a shared server, It happens due to sharing the same server with multiple websites, then I found a developer who got the data back and restore my website. Then, I moved to managed hosting for WordPress by Cloudways and their platform is fully secured by firewall, they keep daily backup and run security check for websites.

Reply: Even though you’re obviously a shill for Cloudways, I’ll bite and add my two cents. I think many WordPress hosting environments offer a firewall to cover their network from things like this. I operate on a dedicated server environment though, so I’m not sure that would apply. Also, my current server also offers a firewall that’s running all the time. This particular hack circumvented that firewall and the perpetrator snuck right through. The definitions for the firewall weren’t there to block this particular attack.


I have recently installed WordFence as a plugin for my WordPress installs and it seems to be doing a good job. This plugin actually protects the entire domain, not just the directory in which WordPress is installed. It’s also free, which is nice. They do offer a paid “pro” plan though.

Related posts:

  1. Looking For a Good Recent Comments Plugin For WordPress
  2. Wordfence Firewall Causing 403 Forbidden Page Load Error
  3. Website Hacked Because of Yuzo Related Posts Plugin
  4. WordPress SEO: How To Supercharge Your Website Traffic
  5. WordPress Theme & Plugins Installed On This Website

Filed Under: Wordpress

What’s Next? Email Updates!

If you enjoyed reading this post, why not consider signing up to receive others like it by email? It's so easy and you can unsubscribe at any time.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Connect With Me

  • Facebook
  • Instagram
  • Pinterest
  • RSS
  • Twitter

MOST POPULAR POSTS

  • How to Set the Photo Quality in your Canon Rebel DSLR Camera Before participating in any type of photo shoot, it's i...
  • How to Adjust the Mouse Click & Scroll Settings in Windows 10 I's say this is one of the very first settings I ed...
  • How to Export Video From Adobe Photoshop When it comes to exporting and rendering video clips, t...
  • How to Apply an Adjustment to Only One Layer in Adobe Photoshop The answer is clipping. I'll tell you that right up fro...
  • How to Speed Up & Slow Down Video in Adobe Photoshop This is one of those posts that's going to be super hel...
  • Cutting Out a Shape From a Shape in Adobe Photoshop I've been using shapes for various things in Adobe Phot...
  • How to Set the Self Timer On Your Canon Rebel DSLR Camera Camera self timers are great. I was recently part of a...
  • Animating Scale, Rotation & Opacity in Adobe Photoshop I sat down a few days ago and started messing around in...
  • How to Set Your Canon Rebel Camera For Continuous Shooting Continuous Shooting mode is very important for those wh...
  • 3 Ways to Close Applications in Windows 10 This is going to be a very quick post because the topic...

Recent Comments

  • angelica blanco on How to Organize Video & Audio Project Files for Adobe Photoshop
  • pete salomone on Downloading Photos From a Digital Camera Using Adobe Bridge
  • cdn on How To Create a Slideshow For Your Lock Screen in Windows 10
  • Jay Gaulard on How to Set Your Canon Rebel Camera For Continuous Shooting
  • Deb on How to Set Your Canon Rebel Camera For Continuous Shooting

Copyright © 2021 · IndustryDev.com Web Design & Photography Blog · About · Write For Us · Contact · Privacy / Terms · Sitemap