Hello.
Along with Osclass, i maintain a Wordpress site for a local club. I read here
https://www.valueweb.gr/hacked-two-top-wordpress-security-plugins-failed/
your "adventure" and i would like to ask what plugins you were using and what measure you NOW use.
Many thanks
Sorry for the delay, i don't have much time these days.
When we got that hack from YUZO related plugin, we had The Shield plugin active. Didn't do much protecting us i must say. A user was created with admin rights and several links were in many places (menus etc).
At the same time a friend's site got also hacked from YUZO related plugin and he had Worldfence plugin. BUT no admin user was created, still a lot of links were in menus and posts. Not sure if Wordfence blocked the creation of an admin user or the attack was different.
But who cares. Still a GOOD BACKUP strategy is the best FIREWALL.
I will later this weekend post more on this, about what we did AFTER that incident. What protection layers we added and how it is now.
Ok, here is the answer to your second question about what we did after all that.
We enabled Imunify360 for a month (to see how it goes) on our hosting plan. Also we removed The Shield and installed Ninja firewall for Wordpress plugin. We already used Ninja firewall standalone (free) for Osclass and it is a great script.
Also we used for a limited time CIDRAM script to ban IPs but we removed it since it was blocking some cloud ips we needed. Still it could be tuned to exclude all that but we had no time to devote.
As from March we permanently enabled Imunify360 and of cource we still have Ninja FW.
Feel free yo ask if you have any more questions.
Thanks for the info.
Is Imunify360 any good? Seems like a trend in web hosting companies latetly.
Thanks for the info.
Is Imunify360 any good? Seems like a trend in web hosting companies latetly.
To be honest i have no idea how well Imunify360 protects us (or not). In Cpanel there are no statistics provided of any kind, just some results from scanning the files for malware.
Imunify360 also gave us some false alarms about malware in the files, one PNG and one html in the cache directory. Both totally false and the second was actually DELETED from Imunify360 !!!! Go figure .... If imunify360 can delete files from a server like that, what can i say ... it is a badly badly designed software.
I have still Ninja Firewall for WP in place and i still see blocks of attacks. And since Imunify360 "sits" in front of anything, i guess there are still some mild attacks that come come through.
It doesn't do anything at all to protect from spam and fake registrations. We have the same ammount and more of those as before. From Russian IPs mostly.