What To Do When Your Website is Hacked
Updated: August 29, 2011
- If your website is infected with malware you should take down the website if possible.
- If you have a clean backup of the website you can restore that to fix the website. If you do not have a clean backup you will need to find and remove any code added by the hacker to fix the website.
- To prevent the website from being hacked again you will need to determine how the website was hacked and fix that. You should also insure that you have taken other measures to keep your website secure.
- If your website has been removed from the Google search engine you will need to file a reconsideration request. If your website was distributing malware and has been flagged and blocked, you may need to request a malware review from Google, Yahoo, and or Bing to have the warning removed.
- If data has been breached during the hack you may have a legal requirement to disclose that. You can find US state requirements here. For breaches of credit card data you should review the incident response information from issuers (American Express, Discover, MasterCard, Visa) whose accounts have have been breached in the hack.
- Hacked Website Cleanup
- Hacked Drupal Website Cleanup
- Hacked Joomla Website Cleanup
- Hacked Magento Store Cleanup
- Hacked MediaWiki Wiki Cleanup
- Hacked Moodle Website Cleanup
- Hacked osCommerce Store Cleanup
- Hacked phpBB Forum Cleanup
- Hacked WordPress Blog Cleanup
- Hacked Zen Cart Store Cleanup
- Check if a Web Page is Redirecting When Accessed from Google
- Check If a Web Page is Cloaked to Googlebot
- View Hidden Text on a Hacked Website
- View Cloaked Content on a Hacked Website
- Check for Spam Content on Your Website
- Remove Spam Content Google Has Indexed From Your Website
- Set Up a Google Malware Warning Email Alert
- Cross-Site Malware Warning
- Unobfuscate PHP Hack Code
- Basic Backdoor Script Finder