by admin | Feb 14, 2025 | Blog News - English, Website Security
Google can detect if your webpage/site is infected. If this happen, Google block all infected sites and sometime remove from the bot indexing schedule
A website can be hacked and injected with JavaScript redirect malware to another malicious site. Some pages of the website may be hacked and that a JavaScript is injected into your site by a third party and may be used to redirect users to malicious sites,” the common inserted code look like this one “eval(function(p,a,c,k,e,r)”. The code can be inserted in HTML, JavaScript or PHP files.
Websites were also warned that server configuration files can compromised. Your site can be cloaking and showing the malicious content in certain situations. It is important to remove the malware and fix the vulnerability to protect site visitors. Webmasters were also urged to keep their software up-to-date and to contact their Web hosts for technical support.
How website are Hacked?
- Weak password
- Database injection
- Outdated scripts
- Pirated scripts
The password may be weak if it has the following attributes
- Short eg less than 6 characters
- Mono characters, eg small letters, capital letters, or numbers only
- Contain mainly English or popular terms eg names of big cities, streets, popular names, and any English and other remain international languages preferably English
We urge webmasters and users to use passwords from their native languages and must be unpopular words or use random characters not less than 8 in the following manner
Example of good password:
1D5f9&MoxI
The above password contain:
- small letters = 3
- Capital letters = 3
- Special characters = 1
- Numbers = 3
- Total characters= 10
Example of bad password
1989 (It contain numbers only, short only 4 characters)
Grace (it contain letter only, the name is so popular, English word, short only 5 characters)
What to do if site infected!
- Quarantine your site
- Assess the damage
- Clean up your site
- Ask Google to review your site
Download your website including its database and emails any thing associated with.
Delete the hosted account and recreate again
Scan the website using antivirus like Kaspersky, Bitdefender, Norton, Avira to asses the degree of infection. Clean up the detected malicious code/scripts/Trojans.
Upload your website and scan using website security tools to detect the remained infection and webpages affectedall. Use the website listed below for infection check up
Ask Google to review your website by
by admin | Feb 14, 2025 | Blog News - English, Website Security
There are a number of reasons to why your IP address may have been listed by Barracuda and other listing directories as having a poor reputation.
The reasons includes:
- The email server at your IP address contains a virus and has been sending out spam
- The email server at your IP address may be configured incorrectly
- The PC at your IP address may be infected with a virus or botnet software program
- Someone in the organization at your IP address may have a PC infected with a virus or botnet program
- Your IP address may be a dynamic IP address which was previously utilized by a known spammer
- The marketing department of a company at your IP address may be sending out bulk emails that do not comply with the CAN-SPAM Act.
- Your IP address may have a insecure wireless network attached to it which could allow unknown users to use it’s network connection to send out bulk emails.
- In some rare cases, your recipients’ Barracuda and other directories Spam Firewall may be misconfigured
by admin | Feb 13, 2025 | Website Security
Spam User Alert: yanz@123457
Registered Email: [email protected]
Privileges: Administrator
Actions Taken by the Bot-Generated User:
- Disables All Plugins: The bot starts by disabling all the existing plugins on your website, rendering many functionalities inactive.
- Installs Its Own Plugins: The bot installs malicious plugins designed to compromise your website’s security and functionality.
- Changes Folder and File Permissions: The bot alters the permissions for various folders and files, gaining unrestricted access and control.
- Transforms Website to Phishing Site: Over time, the bot modifies your website’s structure and content, turning it into a phishing website aimed at deceiving your visitors.
Steps to Counteract the Bot’s Actions:
- Delete All Spam Users: Remove the user yanz@123457 and any other spam users created by the bots.
- Restore Folder and File Permissions: Reset all folder and file permissions to their original state to ensure secure access.
- Reactivate Disabled Plugins: Enable all the plugins that were disabled by the bot.
- Delete Malicious Plugins: Remove any plugins installed by the bot that were not part of your original setup.
- Harden Your Website: Implement additional security measures, such as blocking the user yanz@123457, to prevent future attacks.
- Regular Monitoring: Visit your website daily or weekly to examine any changes and ensure everything is functioning as expected.
- Install Monitoring Plugins or Services: Use plugins or services that can report any changes to your website. Ensure all newly created users are manually approved.
- Maintain Regular Manual Backups: Always retain a fresh, latest manual backup of your website. In case anything beyond security measures happens, you can quickly restore your site to a previous state.
By taking these steps, you can safeguard your website from such malicious activities and maintain its integrity.
