My Blog Hijacked

[artist18]

My website has been hijacked by someone who calls himself/herself "scorpion". What are my options? I don't want to lose the blog. It is just a simple blog of articles with very little traffic although it has PR.

My host said they saw php-shell script on my site. What does that mean ?

Please advise regarding my options. I feel so depressed.

Maggie

[neonjuice]

What type blog do you use? I use wordpress and sadly I had been hacked and lost of my files. 6 months of work to be exact. I now carry out back-ups as often as possible via the Cpanel i have for my hosting account. The hackers gained access to my site via finding a security flaw in the server that my hosting company uses. Although it is possible for a SQL Injection into the admin log in area with wordpress.
I am not a security expert in this area, but backing up your files often should be done and changing your password often will help protect your blog.

[Redcore]

A PHP shell script is probably what the hacker uploaded to your host so they'd have constant access to your files and folders (it's kind of like a PHP-based FTP). It just needs to be deleted. Sometimes hackers will upload a few in various places and try to name them within the naming convention other files have been named to make you overlook them.

Chances are good that your database is untouched and totally fine. It would still be advisable to change the connection credentials for all databases along with the FTP and cPanel connections. They probably weren't compromised either, but why take chances. If your database is fine, your blog is fine (worst case scenario, you just have to reinstall the blog software).

If you were blogging with homemade HTML and those were deleted...you're just SOL unless you have a local copy on hand.