WordPress Hack and Google Cloaking Hack Solution
For the last month and a half or so, I’ve been trying to fight back against the WordPress Hacking attacks on my blog, and as hard as it is for me to say, I finally succumbed. This required about 2 weeks of intensive backup-restore operations.
During this time, I will try to explain how my blog was hacked and help you by apologizing to you for not being able to access the content you are looking for on my blog.
Index
What is a Seo Attack?
If you have been a victim of the“Pharma Hack” or in other words“Google Cloaking Hack“, which can also be called a kind of SEO attack, I recommend you to read this article from start to finish.
Spider scripts developed by hackers constantly surf the internet and choose hit websites with high Google Seo value, that is, those that rank high in search engines, as their victims.
When Spider spots the prey, it hands the job over to the bots and the“bot scripts” take over the hacking task from then on.
When the bot script reaches the final result, that is, when it starts to manage your blog, when any link on your page is clicked, it will go to pharmaceutical sales sites such as Pharmacy sites directed by the bot and increase the google rank value and google seo values of those sites, while reducing the Google Seo value of your blog, it will take your site to the “Google Spam” list.
In fact, by redirecting visitors to your site to their own sites, they steal your visitors in a sense. Therefore, while the Seo value of the redirected site is increasing, yours will constantly decline.
How Do Bot Scripts Algorithms Work?
Bot scripts first detect which software their victims are working with. In other words, it detects which type of 3rd party software such as WordPress, PrestaShop, BB Form, Simple Machine is used.
The bot’s hacking module for that software then kicks in and tries to look for vulnerabilities in the website and continuously log in. In the next part of our article, we focus on the bot that tries to hack a WordPress blog.
WordPress Hacking
The bot that follows your WordPress blog starts to try all the tasks in its algorithm one by one. First of all, they check the access permissions of the files and directories on the blog and site called “CHMOD”. If you have accidentally opened the permissions of a file or directory completely to users, that is, if you have given permissions similar to “CHMOD-777”, it will not take long for the bot to notice this.
Secondly, it will try to use the names of blog members to try to get a password to log in to the site. Once it finds the password, there is no limit to what it can do, especially if this account has administrator permissions.
WordPress Hacking via File Hacking
It changes the structure of the “.htaccess” file, which contains the“search.php” and page redirects of the WordPress site it hunts with similar methods, and although the blog is physically yours, it has been taken over by the Google Cloaking Hack method. There are a few solutions you can take after that, but salvation is still a long way off.
To share a few solutions I did after being hacked on my previous blog, I can say the following.
What is the WordPress Hacking Solution?
Disable Plugins
First of all, thinking that this was caused by plugins, I tried uninstalling plugins one by one. At first I thought it was successful, but then I realized that my blog was still under the poison of the bot.
Even when I uninstalled all the plugins, after a while the redirection to Pharmacy Sites continued. Therefore I realized that removing the plugins did not help.
Restore WordPress from Backup
I then uploaded the WordPress backup file I get every month and restored it, but a few days later I lost my blog again.
And this time, in addition to pointless redirects, I was also getting redirects to Viagra sites when I clicked on the search box. So while backup-restore seems to work for a while, within a few days your blog can get out of control again.
Install 3rd Party Security Plugins
You may want to neutralize attacks by installing third-party security plugins. Although a plugin called“wp-security” seemed successful at first, it also succumbed later. Moreover, it took bot attacks to the next level.
In addition to the redirect and search box, meaningless advertising links started to appear in the header, that is, at the top of the page.
SOLUTION: 100% Success Guaranteed. Close to Recovery, Start Over!
I tried all three methods above and unfortunately failed.
1. I decided to resign myself to my fate and revamp the system from the ground up. However, this time I configured my site from Cpanel to be accessible only with my own IP address. I installed the WordPress application from the apps repository of my hosting.
2. I defined the prefix name of the database tables belonging to WordPress. I defined it as“aWcxMbb_news” instead of“wp_news“. I also changed the MySQL password to a stronger password.
3. After installing WordPress, I gave the display name of the admin account not“admin” but for example“cMediaX” (of course I will not write the name I gave here).
4. I bought myself a WordPress Theme and after installing this theme, I did the categorization and pagination process. I created a backup in this way. Just in case. 🙂
5. Until this stage, I keep my website closed to other users. I created the contents of my articles and pages one by one as new articles and new pages from the“export.xml” file in the backup I took before.
Install Wordfence Security Plugin
6. After testing that my blog was running smoothly with the new theme after wordpress hacking, I installed three plugins whose names I will mention.
6.1. We will need to take extra precautions to prevent the bot from logging in. Therefore, install a plugin called Wordfence Security . This plugin will automatically scan and backup files and directories at regular intervals for free. You can even block IP numbers and IP-Mask addresses that you don’t want accessing your blog.
It also has a module that statistically determines the attacks and from which source they are made. You can automatically create countermeasures by creating policy policies. You can completely block access to a specific country, city or location. The plugin is the most successful WordPress security application I have ever seen.
It also has a module that statistically determines the attacks and from which source they are made. You can automatically create countermeasures by creating policy policies. You can completely block access to a specific country, city or location. The plugin is the most successful WordPress security application I have ever seen.
6.2. Finally, I would recommend you to install a plugin called WP Login Security and History to log the IP addresses that want to attack. In this way, you can develop a more effective counter strategy against incoming attacks.
6.2. Finally, I would recommend you to install a plugin called WP Login Security and History to log the IP addresses that want to attack. In this way, you can develop a more effective counter strategy against incoming attacks.
Finishing Touches
7. Finally, I backed up the WordPress Hacking attacked blog one last time before opening it to other users. Then I opened the blog to access. In the face of all I did, the blog is still being attacked, but now I can block it. As you can see in the picture above, attacks are being organized from many countries, especially Russia, Israel and Argentina.
I hope this information has been useful. To ask a question, please write in the comment section below.
MAKE A COMMENT
COMMENTS - 0 COMMENTS