{"id":4286,"date":"2019-03-20T07:05:28","date_gmt":"2019-03-20T06:05:28","guid":{"rendered":"https:\/\/assistance.groupemagiconline.com\/?post_type=ht_kb&#038;p=4286"},"modified":"2022-12-16T11:10:00","modified_gmt":"2022-12-16T10:10:00","slug":"piratage-de-mon-site-web","status":"publish","type":"ht_kb","link":"https:\/\/assistance.groupemagiconline.com\/en\/knowledge-base\/piratage-de-mon-site-web\/","title":{"rendered":"Hacking of my website"},"content":{"rendered":"<p style=\"text-align: justify;\">Websites are continuously targeted by hacking attempts.<br \/>\nHackers seek to exploit security holes in your PHP applications mainly to send SPAM, but it can also be for phishing or simply \"fame\".<\/p>\n<h2 class=\"sectionedit1\" style=\"text-align: justify;\">Phishing<\/h2>\n<div class=\"level2\" style=\"text-align: justify;\">\n<p><strong>As a subscriber, you are likely to receive a phishing email one day.<\/strong><\/p>\n<p>Magic Online can also be the target of a phishing campaign, aimed at its own customers.<\/p>\n<p>Phishing is a technique used by fraudsters to retrieve confidential information, especially banking information. To do this, the fraudster creates a web page that is similar in every way to that of a trusted authority (bank, paypal, etc.). He then sends e-mails to Internet users inviting them to visit the web page under various pretexts.<\/p>\n<p>The email is usually sent to random email addresses, for example contact@domain. Or because your email address is clearly displayed on your website.<\/p>\n<p>The victim finds himself on the fraudster's page, but thinks he is on the company's page (his bank for example). The victim enters his identifiers or bank details in complete security and the fraudster enters them in the process.<\/p>\n<p>Often, the fraudster even plans to redirect the victim to the real site, so that he or she does not suspect the fraud at all.<\/p>\n<p>The fraudster therefore needs a space to host his fraudulent page. Most of the time, he will use an existing website in which he will find a security flaw allowing him to discreetly host his page without the webmaster knowing.<\/p>\n<p>There are countless bots constantly scanning the internet for fallible sites. Fraudsters are extremely well organized to reach the maximum number of victims and host as many fraudulent pages as possible. It is imperative that you make sure that\u00a0<a class=\"wikilink1\" title=\"hosting_mutualized:programming:security\" href=\"http:\/\/assistance.nuxit.com\/Base-de-connaisssance\/securite\/\">security of your website<\/a>\u00a0especially if you use scripts\u00a0<acronym title=\"Hypertext Preprocessor\">PHP<\/acronym>\u00a0known as\u00a0<acronym title=\"Content Management System\">CMS<\/acronym>.<\/p>\n<h2 class=\"sectionedit3\">Consequences of Phishing<\/h2>\n<div class=\"level1\">\n<ul>\n<li class=\"level1\">\n<div class=\"li\"><strong>For you<\/strong>\u00a0You are entirely responsible for the content hosted by your website. In the event of a complaint being filed or a legal investigation, you would be exposed. You would have to prove your good faith and demonstrate that these pages were hosted without your knowledge.<\/div>\n<\/li>\n<\/ul>\n<ul>\n<li class=\"level1\">\n<div class=\"li\"><strong>For your site<\/strong>\u00a0The image of your website may take a serious hit: your site may be quickly blacklisted by search engines and referenced as a phishing gateway. Moreover, your site may slow down and have strange behaviors.<\/div>\n<\/li>\n<\/ul>\n<\/div>\n<ul>\n<li class=\"sectionedit4\"><strong>Action as a host <\/strong>We will be legally obliged to disable the hosting once we have been informed of phishing. This is why we systematically suspend the accounts responsible for phishing. This suspension is always accompanied by a ticket opened by our team and sent to the customer's e-mail address. We try to include as many details as possible about the phishing, usually the<acronym title=\"Uniform Resource Locator\">URL<\/acronym>\u00a0of the fraudulent page being hosted. It is imperative that you respond and take immediate action to remedy the situation.<\/li>\n<li class=\"sectionedit5\"><strong>Action as a customer<\/strong> Prevention is better than cure. But if the damage is done, all you have to do is what should have been done regularly: you care about the <a class=\"wikilink1\" title=\"hosting_mutualized:programming:security\" href=\"https:\/\/assistance.groupemagiconline.com\/en\/knowledge-base\/securite-de-votre-site\/\" target=\"_blank\" rel=\"noopener\">security of your website<\/a>\u00a0and especially the application of updates and security patches distributed by the script editors\u00a0<acronym title=\"Hypertext Preprocessor\">PHP<\/acronym>\u00a0that you use.<\/li>\n<\/ul>\n<\/div>\n<h2 style=\"text-align: justify;\"><span id=\"Conseils_pr.C3.A9ventifs\" class=\"mw-headline\">Preventive advice<\/span><\/h2>\n<p style=\"text-align: justify;\">Applying these recommendations will reduce the risk of hacking.<\/p>\n<ul style=\"text-align: justify;\">\n<li>Make regular backups of your website (files and databases).<\/li>\n<li>Do not host abandoned sites, or dubious files.<\/li>\n<li>Change your FTP and database passwords regularly.<\/li>\n<li>Use strong passwords: they must consist of\u00a0<b>8 characters minimum<\/b>It mixes lowercase letters, uppercase letters, numbers, and special characters.<\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span id=\"Conseils_curatifs\" class=\"mw-headline\">Curative advice<\/span><\/h2>\n<p style=\"text-align: justify;\">Here is what you can do if your site has been hacked:<\/p>\n<ol style=\"text-align: justify;\">\n<li><a class=\"mw-redirect\" title=\"How to change the password of the main FTP account?\" href=\"https:\/\/assistance.groupemagiconline.com\/en\/knowledge-base\/gerer-mes-comptes-ftp\/\" target=\"_blank\" rel=\"noopener\">Change your FTP password<\/a><\/li>\n<li>Change the password of the database used by the site<\/li>\n<li>Remove the hacked website from your hosting<\/li>\n<li>Restore a backup\u00a0<strong><i>healthy<\/i>\u00a0<\/strong>of the website<\/li>\n<li>Update the code of your site and its components<\/li>\n<\/ol>\n<p style=\"text-align: justify;\">In addition we advise you to :<\/p>\n<ol style=\"text-align: justify;\">\n<li>Check, by hand, if files have been uploaded to your hosting without your knowledge and delete them<\/li>\n<li>Perform an antivirus scan of your computer<\/li>\n<li>Scan your site with a tool like <a href=\"https:\/\/www.aesecure.com\/fr\/\" target=\"_blank\" rel=\"noopener\">aeSecure<\/a><\/li>\n<li>Improve access control to hosted resources using files\u00a0<a title=\"Category:Htaccess\" href=\"https:\/\/assistance.groupemagiconline.com\/en\/knowledge-base\/fichier-htaccess\/\" target=\"_blank\" rel=\"noopener\">.htaccess<\/a><\/li>\n<\/ol>\n<h2 style=\"text-align: justify;\"><span id=\"CMS\" class=\"mw-headline\">CMS<\/span><\/h2>\n<p style=\"text-align: justify;\">CMS, whether it is WordPress, Joomla, Drupal, MadeSimple, SPIP, Prestashop or OScommerce, must\u00a0<b>always<\/b>\u00a0be kept up to date. Indeed, the PHP code of your applications is the only vulnerability of your site.<br \/>\nNot doing the updates increases the risk of hacking . You should also be careful not to use insecure or outdated components (abandoned by its developers).<\/p>\n<h2 style=\"text-align: justify;\"><span id=\"Wordpress\" class=\"mw-headline\">WordPress<\/span><\/h2>\n<p style=\"text-align: justify;\">Being very popular, WordPress is despite itself the most targeted by hackers. However, it is very easy to avoid this by following these simple rules:<\/p>\n<ol style=\"text-align: justify;\">\n<li>Keep WordPress up to date with the latest version<\/li>\n<li>Update all its plugins<\/li>\n<li>Update all its themes<\/li>\n<li>Delete unused themes and modules<\/li>\n<\/ol>\n<h2 style=\"text-align: justify;\"><span id=\"Liens_utiles\" class=\"mw-headline\">Useful links<\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li>The official WordPress website, for the latest information on its updates:\u00a0<a class=\"external free\" href=\"https:\/\/wordpress.org\/\" rel=\"nofollow\">https:\/\/wordpress.org<\/a><\/li>\n<li>The\u00a0<i>WPScan Vulnerability Database<\/i>\u00a0which maintains a list of known vulnerabilities for WordPress, its themes and plugins:\u00a0<a class=\"external free\" href=\"https:\/\/wpvulndb.com\/\" rel=\"nofollow\">https:\/\/wpvulndb.com\/<\/a><\/li>\n<li>A site that gives a method to clean a hosting, via\u00a0<a class=\"new\" title=\"SSH connection on Premium (page does not exist)\" href=\"https:\/\/wiki.phpnet.org\/index.php?title=Connexion_SSH_sur_Premium&amp;action=edit&amp;redlink=1\">SSH<\/a>\u00a0:\u00a0<a class=\"external free\" href=\"https:\/\/buzut.fr\/reparer-wordpress-hacke\/\" rel=\"nofollow\">https:\/\/buzut.fr\/reparer-wordpress-hacke\/<\/a><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\">Useful Joomla links<\/h2>\n<ul style=\"text-align: justify;\">\n<li>Official website of Joomla :\u00a0<a class=\"external free\" href=\"https:\/\/www.joomla.org\/\" rel=\"nofollow\">https:\/\/www.joomla.org\/<\/a><\/li>\n<li>Lists of vulnerable Joomla modules :\u00a0<a class=\"external free\" href=\"http:\/\/vel.joomla.org\/\" rel=\"nofollow\">http:\/\/vel.joomla.org\/<\/a><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\">Useful links Prestashop<\/h2>\n<ul style=\"text-align: justify;\">\n<li>Information about the Warehouse theme flaw and its modules:\u00a0<a class=\"external free\" href=\"http:\/\/iqit-commerce.com\/securityhotfix\/\" rel=\"nofollow\">http:\/\/iqit-commerce.com\/securityhotfix\/<\/a><\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\"><span class=\"mw-headline\">Case\u00a0<\/span><span id=\"Les_cas_les_plus_courants_de_failles_de_s.C3.A9curit.C3.A9\" class=\"mw-headline\">currents\u00a0<\/span><span id=\"Les_cas_les_plus_courants_de_failles_de_s.C3.A9curit.C3.A9\" class=\"mw-headline\">of security breaches<\/span><\/h2>\n<ul style=\"text-align: justify;\">\n<li><b>Security hole in your website<\/b>\u00a0: The scripts used have known security flaws<\/li>\n<li><b>Unsecured password<\/b>\u00a0Password too short, or too easy to guess or crack<\/li>\n<li><b>Fault in your PC<\/b>\u00a0A virus\/malware allowed hackers to obtain your passwords<\/li>\n<\/ul>\n<h2 style=\"text-align: justify;\">Website redesign<\/h2>\n<p style=\"text-align: justify;\">You can follow our assistance if you need <a href=\"https:\/\/assistance.groupemagiconline.com\/en\/knowledge-base\/demander-le-re-examen-de-mon-site-web\/\" target=\"_blank\" rel=\"noopener\">ask for a review of your website<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>Websites are continuously targeted by hacking attempts. Hackers seek to exploit security holes in your PHP applications primarily to send SPAM, but it can also be for phishing or simply \"fame\". Phishing As a subscriber, you are susceptible to...<\/p>","protected":false},"author":52,"comment_status":"open","ping_status":"closed","template":"","format":"standard","meta":{"footnotes":""},"ht-kb-category":[26],"ht-kb-tag":[669],"class_list":["post-4286","ht_kb","type-ht_kb","status-publish","format-standard","hentry","ht_kb_category-autres-services","ht_kb_tag-site-web"],"_links":{"self":[{"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb\/4286","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb"}],"about":[{"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/types\/ht_kb"}],"author":[{"embeddable":true,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/users\/52"}],"replies":[{"embeddable":true,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/comments?post=4286"}],"version-history":[{"count":3,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb\/4286\/revisions"}],"predecessor-version":[{"id":11646,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb\/4286\/revisions\/11646"}],"wp:attachment":[{"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/media?parent=4286"}],"wp:term":[{"taxonomy":"ht_kb_category","embeddable":true,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb-category?post=4286"},{"taxonomy":"ht_kb_tag","embeddable":true,"href":"https:\/\/assistance.groupemagiconline.com\/en\/wp-json\/wp\/v2\/ht-kb-tag?post=4286"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}