Site Hacked

Update: for clarity now my head is a bit clearer from 48 hour flu…

Well, it seems like some script kiddie had decided to target my website whilst I was lying in bed all day yesterday with the flu and completely unaware.

Despite the WP software being completely up to date they found a way in, and I’m still working on the exact method of entry. I’m assuming they somehow gained my password and accessed via my account, but it could be a sophisticated inject – since nothing else seemed to be touched so far.

It seems they were able to replace the current theme with the default, then simply overwrite the index.php with their own html. I checked my stats and found some suspicious URL requests which were not in my blacklist – which are now added.

I’ve done some security hardening of the website today with some more stringent security measures. Though I’m aware there’s no such thing as 100% invulnerability, the purpose is really to make hacking this domain not worth it. This is a ‘hobby’ site after all, there’s not much kudos to gain from pwning this domain – hence my suspicion it was a script kiddy above all else.

Good reminder for frequent backups, I guess.