Having your website hacked can be a very humbling experience as there is nothing that can push the site’s visitors away like a message instructing them that the site is jeopardized and can damage their computer. Some of the ways of knowing that your site has been hacked include your website has been obliterated, or your website being entirely wiped out and replaced by a new and unfamiliar page. So exactly do you do when you realize that your website has been hacked?
The first thing you need to do even if it is hard is to stay levelheaded. Keep in mind that you can recover from this attack on your website. Staying calm is important as it will help you to think more clearly to avoid making a mistake that can lead you to lose your website for good. The next thing is to contact your host or your support team. Your support team should be made up of individuals who are familiar with your website and its configuration and they also have to have extremely high technological expertise.
Your support team can include either your host or your website developer. The next step is to pull together all the data that will be beneficial to your support team. This info will include your weblogs, backups, FTP / sFTP access credentials, CMS login, and hosting login so that your support team can be able to have the required access to your website. The other recommended step is to take your site offline. You can opt to either password protect the main directory where your site resides to bar visitors from infiltrating your site while your support team fixes your website or temporarily shut down the website.
After that step is completed, it is important for you to ensure that your website is fully scanned for malware and viruses. You can achieve this by using antivirus software to scan your local computers to ensure there are no Trojans or spyware left behind. Make sure that you have updated antivirus software for the best results. After you have completed scanning the computer, the next step is to change the passwords for your website, FTP, and databases. Also, ensure that you audit your websites log files and other data so as to determine how exactly the site was hacked. After that is over you can clean the website and put it back online.