Yuav kuaj li cas, Tshem Tawm, thiab Tiv Thaiv Malware ntawm Koj Lub Vev Xaib WordPress

malware

Lub lim tiam no tau zoo nkauj. Ib qho ntawm cov tsis-muaj txiaj ntsig uas kuv paub pom lawv tus kheej nyob hauv qhov xwm txheej tsis raug - lawv qhov chaw WordPress muaj kab mob malware. Lub xaib raug tsoo thiab cov ntawv sau tua rau cov neeg tuaj saib uas tau ua ob yam sib txawv:

  1. Sim kis Microsoft Windows nrog malware.
  2. Hloov pauv txhua tus neeg siv khoom siv rau lub xaib uas siv cov npe JavaScript los kho tus qhua lub PC mus kuv cryptocurrency.

Kuv nrhiav pom lub xaib tau raug nyiag thaum kuv mus xyuas nws tom qab nias mus rau hauv lawv cov ntawv xov xwm tseeb thiab kuv tau ceeb toom rau lawv tam sim ntawd. Hmoov tsis zoo, nws yog qhov kev tawm tsam hnyav uas kuv tau tuaj yeem tshem tawm tab sis tam sim ntawd rov tsim kho lub xaib thaum mus nyob. Qhov no yog qhov kev coj ua zoo nkauj los ntawm malware hackers - lawv tsis tsuas yog hack lub xaib, lawv kuj ntxiv cov neeg siv tswj hwm mus rau lub xaib lossis hloov cov ntaub ntawv tseem ceeb WordPress uas rov txhaj cov hack yog tshem tawm.

Malware yog qhov teeb meem txuas ntxiv nyob hauv lub vev xaib. Malware tau siv los ua kom muaj nuj nqi nyem-dhau ntawm cov kev tshaj tawm (tshaj tawm kev dag), ua kom qhov chaw txheeb cais tau tshaj rau cov tshaj tawm cov khoom tshaj tawm, kom sim thiab nkag mus rau cov qhua cov ntaub ntawv nyiaj txiag thiab tus kheej, thiab feem ntau tsis ntev los no - rau kuv cov cryptocurrency. Cov neeg tau txais nyiaj tau zoo rau cov ntaub ntawv tsuas tab sis tus nqi tsim cov tshuab tsuas thiab them tus nqi hluav taws xob rau lawv tseem ceeb. Los ntawm kev zais zais rau cov khoos phis tawm, cov miners tuaj yeem khwv nyiaj yam tsis tau siv nyiaj.

WordPress thiab lwm cov txheej txheem sib koom yog cov hom phiaj loj heev rau cov tub lag luam hack vim lawv yog lub hauv paus ntawm ntau qhov chaw hauv lub vev xaib. Tsis tas li ntawd, WordPress muaj cov ntsiab lus thiab plugin architecture uas tsis tiv thaiv cov ntaub ntawv qhov tseem ceeb ntawm cov qhov ruaj ntseg. Tsis tas li ntawd, WordPress zej zog muaj txiaj ntsig zoo los ntawm kev txheeb xyuas thiab kho cov chaw ruaj ntseg - tab sis tus tswv tsev xaib tsis ceev faj txog kev ua kom lawv lub xaib hloov tshiab nrog cov kho tshiab.

Lub vev xaib tshwj xeeb no tau tuav ntawm GoDaddy lub vev xaib tsoos (tsis yog Tswj WordPress hosting), uas muaj kev tiv thaiv xoom. Ntawm chav kawm, lawv muaj a Malware Scanner thiab tshem tawm kev pab, tab sis. Tswj WordPress hosting tuam txhab uas muag xws li flywheel, WP Cav, LiquidWeb, GoDaddy, thiab Pantheon tag nrho cov khoos phis tawm tau kho tshiab kom koj qhov chaw hloov kho thaum cov teeb meem peb tau txheeb xyuas thiab thaj ua rau lawv. Feem ntau muaj malware scanning thiab blacklisted ntxhais thiab plugins los pab tus xaib tiv thaiv lub hack. Qee cov tuam txhab mus tom ntej ib ruam ntxiv - Kinsta - ib qhov kev ua tau zoo tswj WordPress host - txawm muaj a Ruaj ntseg kev nyab xeeb.

Puas Yog Koj Tus Site Blacklisted rau Malware:

Muaj ntau ntau lub vev xaib online uas txhawb "xyuas" koj lub xaib rau malware, tab sis nco ntsoov tias feem ntau lawv tsis tau tshawb xyuas koj lub xaib txhua lub sijhawm. Lub sijhawm soj ntsuam xyuas malware tiag tiag yuav tsum muaj cov cuab yeej cuam thib peb uas tuaj yeem muab cov cuab yeej ua tiav tsis tau tam sim ntawd. Cov vev xaib uas muab tshuaj xyuas sai yog cov chaw uas yav dhau los pom koj lub xaib muaj malware. Qee qhov Malware kuaj xyuas lub vev xaib yog:

  • Daim Ntawv Qhia Google Transparency - yog tias koj lub vev xaib tau sau npe nrog Webmasters, lawv yuav ceeb toom koj tam sim ntawd thaum lawv nkag koj lub vev xaib thiab pom malware rau nws.
  • Norton Safe Web - Norton tseem ua haujlwm web browser plugins thiab operating system software uas yuav thaiv cov neeg siv los ntawm yav tsaus ntuj qhib koj nplooj ntawv yog tias lawv tau blacklisted nws. Cov tswv ntawm lub vev xaib tuaj yeem sau npe rau hauv lub xaib thiab thov lawv lub xaib rov ntsuam xyuas dua thaum nws huv.
  • Sucuri - Sucuri koom cov npe ntawm cov chaw malware nrog rau kev tshaj qhia txog qhov chaw uas lawv tau tso npe dub. Yog tias koj lub vev xaib huv tas, koj yuav pom a Yuam Kev Rov Tshawb Xyuas Dua txuas hauv qab cov npe (hauv cov ntawv luam me me). Sucuri muaj lub plugin zoo uas tshawb nrhiav cov teeb meem… thiab tom qab ntawd thawb koj mus rau kev cog lus txhua xyoo kom tshem lawv.
  • Yandex - yog tias koj tshawb Yandex rau koj cov sau thiab pom "Raws li Yandex, tus xaib no yuav txaus ntshai ", koj tuaj yeem sau npe rau Yandex cov webmasters, ntxiv rau koj lub xaib, taw rau Kev Ruaj Ntseg thiab Kev Ua Phem, thiab thov kom koj lub xaib meej meej.
  • Phishtank - Qee tus hackers yuav tso cov ntawv sau phishing rau ntawm koj lub xaib, uas tuaj yeem tau koj lub npe sau raws li lub phishing sau. Yog tias koj nkag mus rau qhov tseeb, tag nrho URL ntawm nplooj ntawv tshaj tawm nyob rau hauv Phishtank, koj tuaj yeem sau npe nrog Phishtank thiab pov npav txawm hais tias nws yog qhov tseeb los yog qhov chaw phishing.

Txawm hais tias koj lub vev xaib tau sau npe thiab koj muaj tus lej nyiaj hauv ib qho chaw twg, koj yuav zaum tau txais ntawv qhia los ntawm tus neeg siv ntawm ib qho ntawm cov kev pabcuam no. Tsis txhob tsis quav ntsej txog kev ceeb toom… thaum koj tsis pom teeb meem, kev ua cuav tsis tshua muaj tshwm sim. Cov teeb meem no tuaj yeem tau txais koj lub xaib de-indexed los ntawm kev tshawb fawb xyaw thiab thaiv ntawm browsers. Qhov tsis zoo, koj cov neeg muaj peev xwm thiab cov neeg lag luam uas twb muaj lawm yuav xav paub tias lub koom haum twg lawv ua haujlwm nrog.

Koj Yuav Tshuaj Xyuas Malware Li Cas?

Ob peb ntawm cov tuam txhab saum toj no hais lus rau yuav ua li cas nyuaj nws yog los nrhiav malware tab sis nws tsis yooj yim heev. Qhov nyuaj yog qhov tseeb xam tawm yuav ua li cas nws tau mus rau hauv koj lub xaib! Cov kab lus tsis zoo feem ntau nyob hauv:

  • Tu - Ua ntej txhua yam, taw rau tus a txij nkawm nplooj ntawv thiab thim rov qab rau koj lub xaib. Tsis txhob siv WordPress 'kev saib xyuas lub neej yav dhau los lossis txij nkawm plugin txij li qhov ntawd tseem yuav coj WordPress ntawm cov neeg rau zaub mov. Koj xav kom ntseeg tau tias tsis muaj ib tus neeg ua haujlwm cov ntaub ntawv PHP ntawm lub xaib. Thaum koj nyob ntawm nws, xyuas koj .htaccess ua ntaub ntawv rau ntawm lub web server kom ntseeg tau tias nws tsis muaj qhov yuam kev loj heev uas tej zaum yuav raug thauj mus los.
  • Nrhiav koj lub xaib cov ntaub ntawv dhau SFTP lossis FTP thiab txheeb xyuas qhov hloov tshiab cov ntaub ntawv hauv plugins, ntxhais, lossis cov ntaub ntawv WordPress. Qhib cov ntaub ntawv ntawd thiab saib rau txhua qhov kev kho uas ntxiv cov ntawv sau lossis cov lus txib Base64 (siv los nkaum kev sau ntawm server-tsab ntawv).
  • Sib piv cov tub ntxhais WordPress cov ntaub ntawv hauv koj cov hauv paus, wp-admin phau ntawv qhia, thiab wp-suav nrog cov phau ntawv txhawm rau saib seb puas muaj cov ntaub ntawv tshiab lossis cov ntaub ntawv me me sib txawv. Kev daws teeb meem txhua qhov thiab txhua cov ntaub ntawv. Txawm hais tias koj pom thiab tshem tawm qhov hack, tseem nrhiav txij li thaum ntau tus tub sab tawm mus ncig ua si nraum zoov kom rov kis tus xaib. Tsis txhob yooj yim sau dua lossis rov txhim kho WordPress… hackers feem ntau ntxiv cov ntawv phem nyob rau hauv cov hauv paus thiab hu rau tsab ntawv qee txoj hauv kev los txhaj cov hack. Cov ntawv tsawg dua malware scripts feem ntau tsuas yog ntxig tsab ntawv cov ntawv hauv header.php or footer.phpCov. Cov ntawv sau ntau dua yuav tau hloov kho txhua daim ntawv PHP ntawm tus neeg rau zaub mov nrog rov sau dua tus lej kom koj muaj sijhawm nyuaj tshem nws.
  • tshem tawm cov neeg thib peb cov ntawv tshaj tawm uas tej zaum yuav yog qhov. Kuv tau tsis kam thov cov ad tshiab thaum kuv tau nyeem tias lawv tau raug nyiag online.
  • Check  koj cov ntsiab lus database ntawm kab ntawv rau cov ntawv sau ua ke hauv nplooj ntawv cov ntsiab lus. Koj tuaj yeem ua qhov no los ntawm kev tshawb nrhiav yooj yim siv PHPMyAdmin thiab tshawb rau qhov kev thov URLs lossis cov ntawv cim.

Ua ntej koj muab koj lub vev xaib nyob… nws yog lub sijhawm no txhawm rau tiv thaiv koj lub vev xaib kom tiv thaiv kom rov qab txhaj tshuaj dua lossis lwm qhov hack:

Koj Yuav Tiv Thaiv Koj Lub Vev Xaib Li Cas ntawm Kev Raug Rho Tawm Haujlwm thiab Malware?

  • xyuas txhua tus neeg siv ntawm lub vev xaib. Hackers feem ntau txhaj cov ntawv sau uas ntxiv rau cov neeg siv tswj hwm. Tshem tawm cov npe qub lossis tsis siv thiab rov qab xa lawv cov ntsiab lus rau tus neeg siv tam sim no. Yog tias koj muaj tus neeg siv lub npe admin, ntxiv tus thawj coj tshiab nrog rau tus neeg siv nkag rau hauv thiab tshem tawm tus account admin zoo ib yam.
  • Pib dua txhua tus neeg siv tus password. Ntau lub vev xaib raug nyiag vim tus neeg siv siv tus password yooj yim uas tau twv hauv kev tawm tsam, ua rau lwm tus nkag mus rau WordPress thiab ua txhua yam lawv xav tau.
  • Lov tes taw muaj peev xwm kho cov plugins thiab cov ntsiab lus ntawm WordPress Admin. Lub peev xwm hloov kho cov ntaub ntawv no tso cai rau ib tus neeg tshawb xyuas ua tib yam yog tias lawv nkag mus. Ua rau cov ntaub ntawv tseem ceeb WordPress tsis tsim nyog kom cov ntawv sau tsis tuaj yeem rov sau dua cov lej tseem ceeb. Tag nrho rau hauv ib tug muaj lub plugin zoo heev uas muab WordPress tawv tawv nrog ib tuj ntawm nta.
  • Manually rub tawm thiab rov kho qhov tseeb cov tshiab ntawm txhua qhov plugin koj xav tau thiab tshem tawm lwm yam plugins. Tshem tawm cov thawj coj plugins uas muab ncaj qha rau cov ntaub ntawv xaib lossis cov chaw khaws ntaub ntawv, cov no yog qhov tshwj xeeb tshaj yog txaus ntshai.
  • tshem tawm thiab hloov tag nrho cov ntaub ntawv hauv koj cov hauv paus sau zam nrog zam wp-cov ntawv tais ceev tseg (yog li hauv paus, wp-suav nrog, wp-admin) nrog lub installation tshiab ntawm WordPress rub tawm ncaj qha los ntawm lawv lub xaib.
  • Tswj koj tus xaib! Lub vev xaib uas kuv tau ua haujlwm rau lub asthiv no tau muaj cov ntaub ntawv qub ntawm WordPress nrog kev paub qhov chaw ruaj ntseg, cov neeg siv qub uas yuav tsum tsis muaj kev nkag mus ntxiv, cov ntsiab lus qub, thiab plugins qub. Nws tuaj yeem yog ib qho ntawm cov no uas tau qhib lub tuam txhab npe kom tau txais nyiag. Yog tias koj tsis tuaj yeem tswj hwm koj lub xaib, nco ntsoov txav nws mus rau cov tuam txhab tswj hwm hosting uas yuav! Kev siv nyiaj ntawm ob peb pob ntxiv rau ntawm kev txais tos tuaj yeem txuag lub tuam txhab ntawm qhov txaj muag no.

Thaum koj ntseeg tias koj tau txais txhua yam tsau thiab tawv, koj tuaj yeem nqa lub xaib rov qab tau nyob los ntawm kev tshem tawm tus .htaccess thim rov qab. Sai li nws tseem muaj txoj sia nyob, saib xyuas rau tib qho kev kis kab mob uas yav dhau los muaj. Kuv feem ntau siv kev siv lub browser tshawb xyuas los saib xyuas cov kev thov network los ntawm nplooj ntawv. Kuv taug qab txhua txoj kev thov hauv lub network kom ntseeg tau tias nws tsis yog malware lossis tsis paub txog… yog tias nws, nws tau rov qab mus rau saum toj thiab ua cov kauj ruam thoob plaws.

Koj tseem tuaj yeem siv txoj kev pheej yig thib peb Malware scanning pab zoo li Cov Vev Xaib, uas yuav luam theej duab koj lub xaib txhua hnub thiab qhia rau koj paub seb koj puas raug tso npe dub rau ntawm cov kev saib xyuas malware. Nco ntsoov - thaum koj lub vev xaib huv si, nws yuav tsis cia li muab tshem tawm los ntawm blacklists. Koj yuav tsum hu rau txhua tus thiab sau thov rau peb cov npe saum toj no.

Tau txais hacked zoo li qhov no tsis lom zem. Tuam txhab uas muag tau them ntau pua nyiaj los tshem tawm cov kev hem thawj no. Kuv tau ua haujlwm tsis pub tsawg dua 8 teev los pab rau cov tuam txhab no ntxuav tawm lawv qhov chaw.

Yuav ua li cas koj xav hais tias?

Qhov Web site no siv Akismet los txo cov kev pabcuam. Kawm li cas koj cov ntaub ntawv tawm tswv yim tiav.