My website was hacked. What should I do?

My website was hacked.First off, if your site was hacked, you have our sympathy. It's really frustrating – not only because it's troublesome to your visitors, but it's really difficult to completely remove the hack.

We offer website scanning for malware, adware, and signs of hacking.  We offer malware removal and firewall installation for WordPress websites.

Are you sure it's hacked?

Unless your website has obviously been defaced, go to http://www.google.com/safebrowsing/diagnostic?site=your domain name — if your website has been hacked, it should show a warning here.

If this doesn't show an error, it's possible your website has still been compromised, but it's less likely.  We can perform a thorough scan of a WordPress website and install a firewall to help protect from future attacks.

Change your passwords

If your site's been hacked, you need to immediately change all of your passwords. We recommend using strong passwords.

Restore from backup

If you have a backup of your website (and database) that you know wasn't corrupted, you should re-upload it to your hosting account.

Remove the hack

You're going to need professional help with this.  We offer malware removal for HTML and WordPress websites.

Identify & fix the weakness

To prevent your site from getting hacked again, you should identify how your site was compromised. There are two types of weaknesses: passwords and structural problems.

Passwords

Most hacks happen because the attacker was able to guess your account's password by brute force. By simply changing your password (and using a stronger one this time), you can prevent these attacks from succeeding in the future.

Structural

These types of weaknesses require thorough testing to identify and professional help to resolve.