Notifications
Clear all

Did we help you in something? If so, we would very much appreciate if you Share our website or forums link. Thank you!

Question about Wordpress Security  

  RSS
After7
(@after7)
Active Member

Hello.

Along with Osclass, i maintain a Wordpress site for a local club. I read here

https://www.valueweb.gr/hacked-two-top-wordpress-security-plugins-failed/

your "adventure" and i would like to ask what plugins you were using and what measure you NOW use.

Many thanks

Quote
Posted : March 6, 2020 23:58
Topic Tags
Editor
(@editor)
Reputable Member Moderator

Sorry for the delay, i don't have much time these days.

When we got that hack from YUZO related plugin, we had The Shield plugin active. Didn't do much protecting us i must say. A user was created with admin rights and several links were in many places (menus etc).

At the same time a friend's site got also hacked from YUZO related plugin and he had Worldfence plugin. BUT no admin user was created, still a lot of links were in menus and posts. Not sure if Wordfence blocked the creation of an admin user or the attack was different.

But who cares. Still a GOOD BACKUP strategy is the best FIREWALL.

I will later this weekend post more on this, about what we did AFTER that incident. What protection layers we added and how it is now.

ReplyQuote
Posted : March 7, 2020 21:02
Editor
(@editor)
Reputable Member Moderator

Ok, here is the answer to your second question about what we did after all that.

We enabled Imunify360 for a month (to see how it goes) on our hosting plan. Also we removed The Shield and installed Ninja firewall for Wordpress plugin. We already used Ninja firewall standalone (free) for Osclass and it is a great script.

Also we used for a limited time CIDRAM script to ban IPs but we removed it since it was blocking some cloud ips we needed. Still it could be tuned to exclude all that but we had no time to devote.

As from March we permanently enabled Imunify360 and of cource we still have Ninja FW.

Feel free yo ask if you have any more questions.

ReplyQuote
Posted : March 8, 2020 11:03
After7
(@after7)
Active Member

Thanks for the info.

Is Imunify360 any good? Seems like a trend in web hosting companies latetly.

ReplyQuote
Posted : March 8, 2020 17:31
Editor
(@editor)
Reputable Member Moderator
Posted by: @after7

Thanks for the info.

Is Imunify360 any good? Seems like a trend in web hosting companies latetly.

To be honest i have no idea how well Imunify360 protects us (or not). In Cpanel there are no statistics provided of any kind, just some results from scanning the files for malware.

Imunify360 also gave us some false alarms about malware in the files, one PNG and one html in the cache directory. Both totally false and the second was actually DELETED from Imunify360 !!!! Go figure .... If imunify360 can delete files from a server like that, what can i say ... it is a badly badly designed software.

I have still Ninja Firewall for WP in place and i still see blocks of attacks. And since Imunify360 "sits" in front of anything, i guess there are still some mild attacks that come come through.

It doesn't do anything at all to protect from spam and fake registrations. We have the same ammount and more of those as before. From Russian IPs mostly.

ReplyQuote
Posted : March 8, 2020 18:01
Share: