Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • December 22, 2020 at 11:17 am #1269278
    Druckart

    Hi, our site got hackd 10 days ago. We could find affected data and removed it, but we are still alarmed for further attacks.. should i send you log-files for investigating?

    December 22, 2020 at 1:15 pm #1269308
    AgenturWP

    Hi, I guess you should contact a freelancer who knows about hacks, because I suspect that the attack did not come through the Enfold theme but through a plugin or an outdated server software… Which files were found where? And it would be good if these files were still available in a baclup to check what they did and then draw conclusions about the intrusion ;)

    If your domain is druckart.de, then the attack came via the Contact Form 7 form using the file upload function. There is a bug up to version 5.3.1 which allows to upload any kind of file ;)

    • This reply was modified 3 years, 10 months ago by AgenturWP.
    December 23, 2020 at 6:14 am #1269466
    Rikard

    Hi Druckart,

    The hack likely didn’t come through the theme which NIXHALBES pointed out. Please make sure that you are running the latest version of WordPress, Enfold and all plugins. Also make sure to change all passwords on the site, including your database password.

    Best regards,
    Rikard

  • Author
    Posts
Viewing 3 posts - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.