Website hacked…

  • jtonioli

    (@jtonioli)


    4 months ago

    We had a hack that happened that then allowed the bad guys to change the paypal email and secret keys with an automation. It changed 2-3 times a day, even when we would block it and then it would turn off our Stripe account. I’m not saying this plugin was the cause… that is still under investigation by our malcare team, but when we finally deleted this plugin from our site, the problem appears to have gone away. Be very careful if you decide to use this plugin and pay attention to make sure your sales are actually coming to you. I don’t think we will be re-installing this one anytime soon.

Viewing 1 replies (of 1 total)
  • Plugin Support Krystian from Syde

    (@inpsydekrystian)

    Hello @jtonioli

    While it’s clear that removing the plugin has stopped the unauthorized changes to your PayPal email and secret keys, it’s important to consider that correlation does not necessarily imply causation. Our team consistently ensures that our plugin is secure and up-to-date, preventing known vulnerabilities.

    I recommend continuing the investigation with your malcare team to definitively identify the source of the hack. Meanwhile, we are here to assist with any additional information you might need regarding the plugin’s security features.

    Kind Regards,

    Krystian

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this review.