

Virustotal is the most popular tool of all. Now, there are scores of free tools available that check if your website has been infected or not. Confirm the hack By using a toolĪfter you have taken the backup, start with scanning your store. To clarify, take a backup of core, extensions & database. If there are additional files that define the working and look of your store, include them in the backup as well. This backup should include both the core files and the database. Take a backup of your siteīefore you start cleaning your Magento store, take a backup first. These lines of code block unwanted access to those particular folders. To add more IP addresses, repeat the line “Allow from…” with different IPs. Order Deny,Allow Deny from all Allow from xx.xx.xx.xxĮdit the xx.xx.xx.xx with your IP address. Update users set pass = concat(‘ZZZ’, sha(concat(pass, md5(rand())))) This can be done via the following SQL statement: Update the user passwords with a single SQL statement to lock out all the attackers.Change the default & obvious credentials to something difficult, random and unique.Here is what you must consider as damage control: Magento hacked example (Source: Forum) Cleaning A Magento (1x & 2x) Hacked Store Control the damageīegin with damage control. Sensitive data theft from the store via phishing pages or javascript.Site data may be sold on the onion sites to competitors.Users refrain from visiting your Magento store due to a lack of trust.A decline in user traffic and revenue from the Magento store.

Google showing spam keywords ( Japanese or Pharma ) search results for your website.New, rogue admins appear in the login database.The Magento store gets slow & shows error messages.Admin panel defaced or a blank screen after login.Malicious redirects appear on your website.Search engines blacklist your Magento store.The checkout page has additional fake forms and you are losing money on sales.Customer complains about stolen credit card details.

I have listed some of these symptoms here: Symptoms Looking for these with an open eye can save your business from a debacle. There are many telltale signs that convey that your Magento store might be hacked. Starting from $25/month Magento Hacked: Possible Consequences or Symptoms
