If you are reading this page then you are on your way to being proactive and taking steps to help reduce the risk of a reinfection. Let's work together to minimize your risks and ensure that your site remains clean.
There are a growing number of software vulnerabilities, being exploited by attackers. Trying to keep up with them can be very challenging to you as a website owner. This is where our Sucuri Firewall comes into play. It will stop attacks before they can reach your website. Note, that it will only start protecting your site after you activate it by changing your site's DNS settings. If you don't know how to do this, just open a ticket in our system providing us your hosting cpanel user/pass and we'll configure it all for you.
2- Update your website!
If you are using WordPress, Joomla (or any other CMS), please update it to the latest version. Why? Because out-of-date software is the leading cause of infections. This also includes your plugins, themes, and any other extension type.
3- Change your passwords
Change the passwords related to your website: FTP, SFTP, cPanel, Plesk, WP-admin, etc. They could have been compromised and we do not want you to be reinfected because the attackers can still come back in through them. Those guides show how to change the password on the most common CMSs:
Also, when changing them, choose a good and strong password. What often defines a good password is built around three core components – Complex, Long, and Unique. We recommend that you use a Password Manager, so you do not have to remember them all in your head.
4- Change your database password.
If you are using a CMS (WordPress, Joomla, etc…) change your database password. Please be sure to update your configuration file – Joomla: configuration.php and WordPress: wp-config.php. This is not an automated process so you will need to know how to open those files and edit manually. If you’re not familiar with handling changes in your database and configuration files, contact your host.
*If you don’t know how to change your passwords (specified above), contact your hosting company for details. You can also Google for “YOUR HOSTING COMPANY – FTP password” for instructions how to do so.
5- Run a virus scan on your personal desktop/laptop.
In a lot of cases we see that websites are compromised due to a desktop malware that steal credentials. It's why we always ask you take a minute to run an antivirus product. There are multiple options that you can choose, including BitDefender, Kaspersky, Norton and Sophos. We also recommend looking at additional tools to protect your desktop, like Malwarebytes (Windows and Mac) and CleanBrowsing (DNS-based).
After the site is clean and secure, a very good practice is to do daily backups at a minimum. There are a number of backup solutions out there you can use. If you are a client of ours you can sign up for our Website Backup solution. It’s a simple configuration that works off FTP / SFTP and stores all your content, including the database, in the cloud.
7- Sucuri Security WordPress Plugin.
Whether you’re a Sucuri client or not, it doesn’t matter; we recommend leveraging our Free WordPress Security plugin. We provide detailed instructions on how to install and provide a more in depth discussion on WordPress Security Monitoring.
8- Clean your Kitchen.
Too often the issues we see plaguing our clients are caused by “soup kitchen” servers. Old installations of their content management systems, themes or plugins. Over time these old installs become forgotten but grow ripe with malware that’s ready to infest their entire server after each clean. Take a minute to separate those things that belong on a test, staging and production server. Read more here