Actions to Take After a Website Hack or Infection

If you are reading this page then you are on your way to being proactive in taking steps to help reduce the risk of reinfection. While no one can promise you the risk will ever be zero, we can work together to ensure that it’s as low as possible.

1. Update your websites.

If you are using WordPress, Joomla (or any other CMS), and it is not already the stable current version, take a minute to update. Why? Because out-of-date software is one of the leading causes of infections today. This includes your CMS version, plugins, themes, and any other extension type.

2. Change your password for all access points. This includes FTP, SFTP (or SSH), CPANEL, etc.

Choose a good, strong password. A good password is built around three core components – Complexity, Length and Uniqueness. The argument most make when it comes to passwords is that it’s too difficult to remember multiple passwords. This is true. It’s also why Password Managers were created.

Password Tip: Start using a password manager: 1Password and LastPass are good ones.

We cannot stress the importance of changing all passwords to include those not related to your CMS. Your website has various access points, attackers understand this and because of this they will often exploit multiple points of entry.

At a minimum, be sure to update the password for all administrator accounts. We say all because often users will create more administrators than they require and will often update one, but forget about the rest. There really is no better time to clean than after a compromise. Take advantage of this time.

Repair Your Blacklisted Website!

Sucuri Website AntiVirus