rxcanada-247 pharmacy hack
-
One of my sites has been hacked. When the site is accessed from the search results in Internet Explorer, the user is redirected to rxcanada-247.com. This does not happen in Firefox or Chrome.
I have Wordfence installed and each time I notice this happening I run a scan and clean up the mess with Wordfence but it keeps occuring every other day or so. The WordPress core file affected is wp-includes/class-wp-error.php. The hacker is adding a line to include another php file that is created called wp-includes/database.sql.php which has the base64 code that supposedly causes the redirect.
I have disabled all 3rd party plugins that seem like they could be vulnerable. The only plugins installed right now are very trustworthy and popular plugins like WordPress SEO, Jetpack, Metaslider, etc.
What steps are recommended for preventing this from happening again?
At this point I’m even willing to hire someone to find the vulnerability and patch it.BTW, I’m using 4.1 and everything is up to date.
- The topic ‘rxcanada-247 pharmacy hack’ is closed to new replies.