En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

IP Address Hosted on EC2 Hacked, <IP_address>/wp-admin showing Hacker Page, what should i do?

0

As title says, the wordpress website which was hosted on EC2 is hacked. The freelancer which developed the website for us no longer have the backup files. I want to know is AWS able to restore the backup files? Or is there any other ways to solve this or prevent it from happening?

Sujets
StockageCalcul
Balises
Sauvegarde et récupérationAWS BackupAmazon EC2
Langue
English
Marc Mah
demandé il y a 7 mois235 vues
2 réponses
0
  1. Stop the EC2 instance ( you can do this from the console. Do not terminate it yet)
  2. Revoke any access keys the instance is using
  3. Take a snapshot of the EBS volume
  4. Terminate the Instance
  5. Create a new volume from the snapshot
  6. Create a new instance
  7. Mount the newly created EBS volume to your new instance and monitor the logs
Dylan Zenner
répondu il y a 7 mois
0

Hello.

Do you have any snapshots of EC2 etc. from before the hack occurred?
If you do not have a snapshot, you cannot restore your data on AWS.

Since wp-admin is easily used for attacks, we usually recommend installing a plugin that changes the URL.
I think you can use a plugin such as WPS Hide Login to change the URL.
https://wordpress.org/plugins/wps-hide-login/

profile picture
EXPERT
Riku_Kobayashi
répondu il y a 7 mois
profile pictureAWS
EXPERT
Didier_Durand
vérifié il y a 7 mois

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents