My Blog Was Hacked, Fixed, and is Back

I was planning on writing a productivity post about managing tasks in Outlook (I will get to it later), but I think I’ll recap the last couple hours during which I discovered and removed a WordPress hack (malware and backdoors) from my site instead (detailed post coming later today).

This was likely a straight forward attack on an outdated WordPress plugin. I backed everything up for a good post mortem, took the blog offline, reset all username/passwords involved in the system, removed all the malicious code from the site, removed backdoor files left on the filesystem by the attackers, cleaned up the database, removed all unused themes and plugins, and turned it all back on.

So, while the site is up, it will only have a subset of the functionality it had before while I dig into the entry point of the attack and find suitable replacement plugins for what I need.

This entry was posted in Information Security, Productivity and tagged , , . Bookmark the permalink.

Leave a Reply