WordPress has become one of the leading web platforms that powers millions of websites. Unfortunately, for WordPress, they have also become a major target for hackers.
With news surfacing of a new vulnerability, WordPress users need to be aware of the vulnerabilities and the dangers of running an out of date or unsecured WordPress installation.
What can happen if your WordPress site is attacked
Many WordPress hacks begin with Hackers injecting malicious programming into the website which grants them control over the site. Once a hacker has control of a website they can install programs to infect your visitors, compromise your secure data, redirect your site traffic to a new website entirely, and much more.
Hacked websites will often contain pharmaceutical terms (Viagra, Cialis, weight loss pills) or other spam that is unrelated to the website. Hackers can conceal this content in code so that is not visible to the human eye, but is visible to Google bots or other search engines crawling your site. Once this information is indexed by Google, people searching for your site will instead see search results for pharmaceutical companies which originate from your site URL.
Another common form of WordPress hacking involves redirecting your website URL to a different site, or redirecting individual links within a website. For example anyone visiting http://yoursite.com would instantly be forwarded to another website determined by the hacker. The latter method involves the hacker selecting individual links within a website that when clicked will then redirect the user to a new site. This method is much harder to detect. (more…)