Your website is hacked!
We know the panic that goes through your head once you read “This site may be Hacked” on any search engine for your website. It is really frustrating – not only because it’s troublesome to your visitors, but it’s really difficult to completely remove the hack.
There are many ways to resolve the issue, but we are going to cover the fastest and easiest way to fix your website.
The first thing you should do is to find the type of attack. A bit of a no-brainer, but important to the list nevertheless. We’ll cover three of the most common attacks here.
- Ransomware: This one’s the easiest to recognize, because that email sitting in your inbox demanding large sums of money is a dead giveaway. Gaining popularity, ransomware attacks can hide your website’s data behind advanced encryption methods until you pony up the dough.
Solution: Ransomware will either require a hefty Swiss bank account or a considerable amount of elbow grease and luck to be rid of. Thanks to the efforts of some white-hat folks, however, full recovery is possible—as pointed out by Bleeping Computer.
- Phishing: These attacks operate on the premise “there’s a sucker born every minute.” When that tempting email or phone call finds the right person, hackers can siphon all the authorization info they need. Once you’ve been fleeced, hackers can hijack your site and even use it in future campaigns. Phishing can be spotted by connecting the dots between a gullible user and your newly remodeled site.
Solution: Should you happen upon a phishing attack, quarantined systems will need to be scanned and scrubbed for any malware. You can use the Symantec virus database for that. It’d also be a good idea to change passwords. Consider multi-factor authentication, and have a little heart-to-heart with the more gullible users in your environment.
- Denial of Service: If your site can’t be found when the address is typed in a browser, there’s a good chance DoS or DDoS is to blame. When countless automated calls for your page or another service on the same server flood its connections, your website will choke.
Solution: DDoS attacks will need to be waited out or otherwise filtered and diverted. If your servers are being overwhelmed, you’d be wise to invest in some traffic flood prevention further out on the network perimeter to quell future attacks.
While checking off these three items should get you back up and running, learning from any mistakes made will help you adapt in this unforgiving digital world.