Security Wordpress Tips

5 Steps to Take After Your WordPress Has Been Hacked

Wordpress Hacker
Written by Connor Douglas

You may have the best-looking website but this doesn’t mean that it is safe and free from cyber attacks. Think again. WordPress websites these days are getting vulnerable to hacks and it takes a good strategy or a great WordPress Maintenance team to ensure that your website is safe and knowing what steps to take to restore it back to normal. The following are the top 5 steps you should be taking if your WordPress website is hacked:

1. Understand what went wrong

There are various reasons for a website to get hacked and the top four are weak passwords, insecure FTP connections, third party plugins, and web application vulnerabilities. If your website is on WordPress, due to the popularity of the platform, it might be quite vulnerable to attacks. It is not uncommon for a website to get attacked so there is no reason to panic. With the right security procedures in place, you can get your website up and running in no time. There might be a few reasons for you to believe that your website is under attack or contains malicious scripts and has been hacked:

  • Your website has been blacklisted on Google
  • Google might send a warning to users that your website has been hacked when they click on your URL
  • Your host has blocked your site
  • You are receiving error messages from your website.
  • Your customer informs you based on warnings they receive from their anti-virus software
  • When you Google your domain, a list of pages you have not created are showing in the results.

2. Toughen up the security on WordPress

It is important to update the security of your website on WordPress. It can be done in the following ways:

  • Create new security keys on WordPress (this can be found in you wp-config.php file in the root of your website)
  • Change your administrator passwords
  • Reinstall all of your plugins and update them.
  • Delete and reinstall the WordPress Core. Be sure to keep your wp-content folder in tact along with your wp-config.php file. Be sure to inspect each of the files to confirm they’re free from malicious scripts.

3. Update all of your plugins & WordPress regularly

Not only does your content need to change and be updated based on SEO requirements, but your website as well. Keeping the website up-to-date helps in preventing it from the vulnerability of attacks. It is also important to stay away from plugins that have not been updated in ages. Hence, it is imperative to ensure that your WordPress is always up-to-date. Always update all your software so you are running the latest versions at all times.

4. Backups will help you in times of need

When in doubt, backup. Always have a strategy in mind and backup your data from time to time. Monitor them to ensure that they are taking place as planned. Store them offsite so they are not affected in any way in the case your entire server is hacked. The last thing you want is to have a server attack and your website along with database gets wiped out and you’re left with nothing. After a website hack, the greatest joy is in knowing that you have a backup on a 3rd party server or on your offline computer there to restore it from. If there was no backup to fall back on, it would be merely impossible to restore your site back to health.

5. Get an expert to take care of your site

There are times when you might feel you do not have the adequate manpower to maintain a website. Hiring a security company could help you solve this problem as you will not be living in the fear of getting hacked. Even if you do get hacked, the security team in place will take care of you and get your website up and running in no time. Often website security is overlooked as more important functions are being given preference. Let the security company take care of the security while you can concentrate on other aspects of your website development.

The above steps will successfully help you restore your website on WordPress if you get hacked.

About the author

Connor Douglas

Connor is a self proclaimed connoisseur of Wordpress. He has been designing and developing Wordpress websites since he was a little boy and now he's looking to share his experience with the world.