Leadership Q&A: 7 steps to fix a compromised website

The scenario

We received this email from a small business owner requesting help:

Our site shows Chinese text trying to sell sunglasses instead of showing our content. My team can log into the site and can see our content is still there. Also, some of the code seems to have been changed and I understand index.php is missing. Is there something we should do, like, right away?

Our email response:

An injection attack is the most probable explanation. WordPress, on which your site is built, is like any major CMS in providing

graffiti art: an enormous eye staring out through a hole cut in a corrugated iron fence
Subscribe to