• You MUST read the Babiato Rules before making your first post otherwise you may get permanent warning points or a permanent Ban.

    Our resources on Babiato Forum are CLEAN and SAFE. So you can use them for development and testing purposes. If your are on Windows and have an antivirus that alerts you about a possible infection: Know it's a false positive because all scripts are double checked by our experts. We advise you to add Babiato to trusted sites/sources or disable your antivirus momentarily while downloading a resource. "Enjoy your presence on Babiato"

Help! My WordPress Site Was Hacked After Upgrading to 6.2 - How Can I Keep It Secure?

L

lunar

Active member
Banned User
May 7, 2022
101
88
28
my.hostvezel.com
Hello everyone,

I'm in desperate need of help. I recently upgraded my WordPress site to version 6.2, and immediately after the upgrade, my site was hacked. All of our Javascript files were attacked, and I'm not sure what to do.

I'm reaching out to the community for advice on how to keep my WordPress site secure. What measures do you take to prevent attacks on your website? Are there any plugins or tools you recommend using to enhance the security of a WordPress site?

Any help or suggestions would be greatly appreciated. Thank you in advance.
 
I highly doubt it would have been Wordpress that caused the issue, likely passwords or unsecured plugin or themes.

To be honest most times you won't need a security plugin, however in the case that you do, ithemes or Wordfence works wonders. If you're really concerned run a physical key like Yubico as well. But, again keeping your site updated is your best defence as well as changing your passwords, might want to check if there's pre-existing malware on the site.
 
  • Like
Reactions: lunar
lunar said:
Hello everyone,

I'm in desperate need of help. I recently upgraded my WordPress site to version 6.2, and immediately after the upgrade, my site was hacked. All of our Javascript files were attacked, and I'm not sure what to do.

I'm reaching out to the community for advice on how to keep my WordPress site secure. What measures do you take to prevent attacks on your website? Are there any plugins or tools you recommend using to enhance the security of a WordPress site?

Any help or suggestions would be greatly appreciated. Thank you in advance.
Click to expand...
 
  • Like
Reactions: Majid051 and lunar
Rubixvi said:
I highly doubt it would have been Wordpress that caused the issue, likely passwords or unsecured plugin or themes.

To be honest most times you won't need a security plugin, however in the case that you do, ithemes or Wordfence works wonders. If you're really concerned run a physical key like Yubico as well. But, again keeping your site updated is your best defence as well as changing your passwords, might want to check if there's pre-existing malware on the site.
Click to expand...
I had wp file manager in the site and like 12 other plugins. How do I clean ndsw malware?
 
lunar said:
I had wp file manager in the site and like 12 other plugins. How do I clean ndsw malware?
lunar said:
Great, thanks for you help!
Click to expand...
Click to expand...
RS-SSL isn't really needed on modern hostings anymore, it used to be helpfull back in times where the majority of the website owners was still using HTTP protocol. IF you want to be sure about your SSL installation check your site here:

SSL Server Test (Powered by Qualys SSL Labs)

A comprehensive free SSL test for your public web servers.
www.ssllabs.com

Regarding ndsw malware, you need to read up on this. Google search is your friend, here 2 links to get you started with:
blog.sucuri.net

Analysis of the Massive NDSW / NDSX Malware Campaign

A detailed analysis of the notable ongoing NDSW/NDSX malware infection with steps on how to identify the telltale if(ndsw===undefined) clause and how clean up the malware from a compromised website.
blog.sucuri.net blog.sucuri.net
malcure.com

Step-by-Step Guide to Cleaning Up Massive JavaScript Malware Redirects NDSW / NDSX / NDSJ

The ndsw / ndsx malware causes massive JavaScript malware infection extending to thousands of JavaScript files. This one can be painful to clean owing to
malcure.com malcure.com

Would be also a good idea to contact your hoster's support

Cheers & good luck
 
Last edited:
lunar said:
Hello everyone,

I'm in desperate need of help. I recently upgraded my WordPress site to version 6.2, and immediately after the upgrade, my site was hacked. All of our Javascript files were attacked, and I'm not sure what to do.

I'm reaching out to the community for advice on how to keep my WordPress site secure. What measures do you take to prevent attacks on your website? Are there any plugins or tools you recommend using to enhance the security of a WordPress site?

Any help or suggestions would be greatly appreciated. Thank you in advance.
Click to expand...
Hello, I can help.
Write in a personal. Give access to the server.
19 years of experience with WordPress.
Sincerely.
 
Custom B said:
RS-SSL isn't really needed on modern hostings anymore, it used to be helpfull back in times where the majority of the website owners was still using HTTP protocol. IF you want to be sure about your SSL installation check your site here:

SSL Server Test (Powered by Qualys SSL Labs)

A comprehensive free SSL test for your public web servers.
www.ssllabs.com

Regarding ndsw malware, you need to read up on this. Google search is your friend, here 2 links to get you started with:
blog.sucuri.net

Analysis of the Massive NDSW / NDSX Malware Campaign

A detailed analysis of the notable ongoing NDSW/NDSX malware infection with steps on how to identify the telltale if(ndsw===undefined) clause and how clean up the malware from a compromised website.
blog.sucuri.net blog.sucuri.net
malcure.com

Step-by-Step Guide to Cleaning Up Massive JavaScript Malware Redirects NDSW / NDSX / NDSJ

The ndsw / ndsx malware causes massive JavaScript malware infection extending to thousands of JavaScript files. This one can be painful to clean owing to
malcure.com malcure.com

Would be also a good idea to contact your hoster's support

Cheers & good luck
Click to expand...
Thanks for these insightful articles, I have not succeded cleaning the malware. I host the files with AWS lightsail.
 
lunar said:
Thanks for these insightful articles, I have not succeded cleaning the malware. I host the files with AWS lightsail.
Click to expand...
Then you can for sure accept the help offer from the forum guys, lots of skillful ones.

Is there a chance to get the Wordpress installation zipped, without wp-config.php or database, so we can analyze the malware and see what and how they did it?..if it's not too big and a not a hassle
 
Custom B said:
Then you can for sure accept the help offer from the forum guys, lots of skillful ones.

Is there a chance to get the Wordpress installation zipped, without wp-config.php or database, so we can analyze the malware and see what and how they did it?..if it's not too big and a not a hassle
Click to expand...
Yea, its posssible. Let me zip the files and upload.
 
This is easy, contact hosting system administrators or subscribe for malcare clean the site for you and recover the backup. they always keep backups.
 
lunar said:
Hello everyone,

I'm in desperate need of help. I recently upgraded my WordPress site to version 6.2, and immediately after the upgrade, my site was hacked. All of our Javascript files were attacked, and I'm not sure what to do.

I'm reaching out to the community for advice on how to keep my WordPress site secure. What measures do you take to prevent attacks on your website? Are there any plugins or tools you recommend using to enhance the security of a WordPress site?

Any help or suggestions would be greatly appreciated. Thank you in advance.
Click to expand...
You downloaded a nulled WordPress version
 
Analize your site files and see if there are files that are not suppossed to be there. I had only one wp. website hacked and it had the same file inside all folders. I created a new wordpress instalation with old database and saved only uploads folder and installed all plugins from a clean source, problem fixed.

I developed 70+ wordpress websites and from my experience here are some general steps to keep the wordpress secure.

1. Install only plugins you absolute need. Find plugins that can do multiple things that replace multiple ones that can do fewer.
2. You dont need a theme, use a reputable page builder with a basic theme or a theme builder.
3. Remove unused files and functionalities.
4. Change default wordpress login page.
5. Set lower user permisions for unexperienced users.
6. Update your wordpress, themes and plugins regulary.
7. Have a secure server with latest updates.
 
You must log in or register to reply here.

Similar threads

naviinju
Need help to fix WordPress hacked site issue
Replies
5
Views
1K
General Tech Discussion
harry26
harry26
mhsowrove
[Need Help]Wordpress Site Redirect to Theme developer Site
Replies
25
Views
3K
General Tech Discussion
l4zyh4x0r
l4zyh4x0r
cybercliff
Please Help, how can i build wordpress site like this..
Replies
9
Views
2K
General Tech Discussion
Saint Gabriel
Saint Gabriel
Determination
Wordpress Help: Motors Theme 400 Error on Demo Installation - Please Help
Replies
0
Views
214
General Tech Discussion
Determination
Determination
V
help, wordpress add users 1 click
Replies
4
Views
450
General Tech Discussion
bluvia
bluvia

Latest posts

Forum statistics

Threads
79,605
Messages
1,146,177
Members
250,644
Latest member
sprinthost46

Share this page

Share this page
Top Bottom
Back
AdBlock Detected

We get it, advertisements are annoying!

However in order to keep our huge array of resources free of charge we need to generate income from ads so to use the site you will need to turn off your adblocker.

If you'd like to have an ad free experience you can become a Babiato Lover by donating as little as $5 per month. Click on the Donate menu tab for more info.

I've Disabled AdBlock