Well the last week has been a real eye opener for me. Having one of my main sites hacked has given me a lot to think about. I know now that I have to move away from WordPress which is going to cause a great deal of work. For now though, as I said in my previous post, I’m working flat out to make my WordPress sites far more secure.
I do though strongly believe that many affiliates are running hacked sites which will result in a penalty from Google as per the statement below
Hidden links whether put there by the website owner or by a hacker or a violation of Google’s Webmaster Guidelines and can result in a site being penalized or even de-indexed. (Google’s process of indexing is automated and there is not really a way for them to determine if the hidden links were added by the website owner or a hacker.)
Remember my site was functioning normally with no visible sign of any problem until one day most of the key phrases from the site received a -450 penalty. I checked all the pages in multi browsers viewing the source code and could see nothing wrong. It was not until I use the Google Labs Tool, Fetch As Google Bot that I could see the source of the problem which was hundreds of inserted spam links.
For anybody who experiences a drop in rankings for a WordPress site I would advise that your first port of call should be to check your site’s pages with the Fetch As Google Bot tool. This is the only way you will see the spam links.
Next check all your site’s source code. Search for source code for something that starts like the example below.
ob_start();eval(base64_decode(‘aWYgKCFmdW5jdGlvbl9leGlzdHMoImNoaW5zdCIpKSB7IGZ1bmN0aW9…………….
Better still search for “eval(base64” in your files.
Also remember that the injection hack that attacked my site was only present in a few files that I could have easily overlooked. Make sure you check EVERY file of your site!
If the hack goes unnoticed then you will receive a penalty from Google resulting in loss of possible all your rankings. The good news is that if you get the hack removed quickly, submit a fresh site map to Google then you can get back your rankings quickly. I know this for a fact as I’m delighted to say my rakings returned early this morning.
I do realise it is easy to take things for granted especially when things are going well but I suggest that you start taking the time to check your WordPress sites. Don’t let what happened to me happen to you!
