Hacked MediaWiki Wiki Cleanup
Your MediaWiki wiki can be hacked due to compromised FTP credentials, an insecure web host, a vulnerable extension, a weak password, or an outdated MediaWiki installation.. When a MediaWiki wiki is hacked, the hack is used to insert malicious code that performs one or more harmful activities. Hacks can have a serious impact on the traffic that your wiki receives. A hack that distributes malware can cause the wiki to be blocked from visitors and a hack that inserts spam can cause the wiki's search rankings to drop or cause the wiki to be removed from Google's search engine. If your MediaWiki wiki has been hacked we can clean it up for you, attempt to determine how the wiki got hacked, and help you to secure it against a future hack. Hiring us will ultimately save you time and money over doing it yourself or hiring someone who doesn't know what they really should be doing (which seems to be pretty common based on the number of times we are brought in to clean up after a hack has returned).
Please feel free to contact us to receive a free consultation on how you can best deal with your hacking issue. If you are not sure if your wiki is hacked, we can perform a free check to confirm for you if your wiki is in fact hacked.
Some of the most prevalent activities preformed by the malicious code are inserting hidden spam links in the wiki's pages, creating spam pages, redirecting visitors to another website, and attempting to install malware on the computers of visitors to the wiki.
When the hack inserts hidden spam links or creates spam pages, your search rankings can drop significantly and Google may remove it from their search engine's index if they detect hidden text, cloaking, or other violations of their quality guidelines. Google may also place a "This site may be hacked." warning on the wiki's search results. If Google has removed the wiki they will place a "Notice of Suspected Hacking" message in their Webmaster Tools indicating that this has been done. When the hack inserts code that attempts to infect the computers of visitors to the wiki with a virus, trojan horse, drive-by download, or other type of malware (malicious software), not only could your visitor's computers become infected but your wiki may also be blocked from visitors. The wiki may be flagged and blocked in the Internet Explorer ("This website has been reported as unsafe"), Firefox ("Reported Attack Site!"), Safari ("Warning: Visiting this site may harm your computer"), Chrome ("The Website Ahead Contains Malware!" or "Danger: Malware Ahead!"), and Opera ("Fraud Warning") web browsers. It may also be flagged and blocked in the Google ("This site may harm your computer.", "This site may harm your device."), Yahoo ("Warning: Hacking Risks"), and or Bing search engines as well as Google's AdWords advertising service and Twitter ("unsafe link"). The hacker can also place a backdoor script that allows them remote access to the wiki to make future changes to it.
To clean up the wiki, we will review the wiki's files and database for code inserted during the hack and remove that code. Checking and cleaning the wiki's files takes a few hours. If the wiki is running on an old version of MediaWiki, the current versions are 1.19.9, 1.21.3, and 1.22.0 (check what version you are currently running), we will upgrade the wiki to the latest version of MediaWiki following proper upgrade procedures. Also, if any extensions are out of date we will update them. We will also work with you to secure the wiki against a future hack. If your wiki has been hacked due to poor security at your web host we can move your website to a new host as part of the service. If your wiki has been removed from the Google search engine we will assist you in filing a reconsideration request. If your wiki was distributing malware and has been flagged and blocked, we will request a malware review from Google and or Bing to have the warning removed. It should take no more than a day to be removed from Google's malware blacklist after a review has been requested.
US$500, payment is due after the wiki has been cleaned up and we accept payment by credit card, debit card, or eCheck through PayPal in a number of currencies.
- Hacked Website Cleanup Tools Extension
- Check If a Web Page is Redirecting When Accessed from Google
- Check If a Web Page is Cloaked to Googlebot
- Check If a Web Page is Redirecting When Accessed from Bing
- Check If a Web Page is Cloaked to Bingbot
- Deobfuscate PHP Hack Code
- Basic Backdoor Script Finder