Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

IP Address Hosted on EC2 Hacked, <IP_address>/wp-admin showing Hacker Page, what should i do?

0

As title says, the wordpress website which was hosted on EC2 is hacked. The freelancer which developed the website for us no longer have the backup files. I want to know is AWS able to restore the backup files? Or is there any other ways to solve this or prevent it from happening?

Argomenti
ArchiviazioneComputazionali
Tag
Backup e ripristinoAWS BackupAmazon EC2
Lingua
English
Marc Mah
posta 7 mesi fa231 visualizzazioni
2 Risposte
0
  1. Stop the EC2 instance ( you can do this from the console. Do not terminate it yet)
  2. Revoke any access keys the instance is using
  3. Take a snapshot of the EBS volume
  4. Terminate the Instance
  5. Create a new volume from the snapshot
  6. Create a new instance
  7. Mount the newly created EBS volume to your new instance and monitor the logs
Dylan Zenner
con risposta 7 mesi fa
0

Hello.

Do you have any snapshots of EC2 etc. from before the hack occurred?
If you do not have a snapshot, you cannot restore your data on AWS.

Since wp-admin is easily used for attacks, we usually recommend installing a plugin that changes the URL.
I think you can use a plugin such as WPS Hide Login to change the URL.
https://wordpress.org/plugins/wps-hide-login/

profile picture
ESPERTO
Riku_Kobayashi
con risposta 7 mesi fa
profile pictureAWS
ESPERTO
Didier_Durand
verificato 7 mesi fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente