New Release Tuesday will be on Wednesday this week because I spent most of my day yesterday battling HACKERS! True Up was hit by the so-called WordPress Pharma Hack. I happened to ego-surf on Google and was horrified to see that instead of True Up the link to my site was replaced with online pharmacy spam. The link still worked, and in fact the site was spam-free to people visiting the site directly. This hack only affects Google’s view of the site, which is part of its evil genius — it can take a long time for the site owner to notice that something is wrong. The hackers are trying to boost their own search engine rankings while in effect destroying your own. Fortunately I caught it before I experienced a significant traffic dip.
So, the PSA: If you don’t already, perform a Google search on your own site regularly. These hackers frequently target WordPress blogs, though other websites can be attacked too. Take all the steps you can to secure your files. If you have been hit, follow the instructions in Pearsonified‘s post — it came to the rescue for me.
WordPress Support Forum Thread on the Pharma Hack
Understanding and Cleaning the Pharma Hack on WordPress on Sucuri
How to Completely Clean a Hacked WordPress Installation
Top 5 WordPress Security Tips You Most Likely Don’t Follow
I’m certainly not thankful this happened to me, but I’m glad I could fix it relatively quickly and as a result now have a more secure site. I hope this information will help some of protect your own websites!