✅ Cómo solucionar hack de Wordpress por Anonymous Fox

✅ Cómo solucionar hack de Wordpress por Anonymous Fox

✅ Cómo solucionar hack de Wordpress por Anonymous Fox

Recienteme ha habido un ataque masivo a miles de páginas web en Wordpress por Anonymous Fox.

En el siguiente vídeo os muestro como solucionar el hack de Wordpress de Anonymous Fox y cualquier otro, ya que la solución nos puede servir para cualquier web en Wordpress hackeada.

Considera suscribirte y darle a me gusta para contribuir a seguir creando contenido gratuito y de calidad❤️

Sígueme en:
Facebook: https://www.facebook.com/randyvarelapage
Instagram: https://www.instagram.com/randyvarela
TikTok: https://www.tiktok.com/@randyvarela.dev

#hack #wordpress #anonymous fox


Content

9.08 -> Yes, it happened again and this time it was more serious, we have been hacked.  serious, we have been hacked. Recently it has
14.57 -> there has been an attack to thousands of web pages in  wordpress and all of my pages and all of my
18.74 -> clients that we had made in wordpress have been hacked.  hacked it seems to be who is behind this
23.99 -> is a person or a group of people who call themselves Anonymous Fox.  call themselves Anonymous Fox not really
28.91 -> I don't think there is any link to Anonymous anymore  because the real Anonymous goes far beyond
34.22 -> hacking people who don't have any power or political  political representation but well the point
38.81 -> is that it's happened to us again and in this video  I'm going to show you how to fix it, in fact I'm going to show you how to fix it.
42.98 -> it can work for any other type of hack  so without further ado, here we go.
49.07 -> Well the first thing we should have  we should have realized is that we've been
52.79 -> hacked and for example we  now we go to our website and
62.24 -> it tells us that Google safe browsing has notified us that this page is  notified us that this page is misleading,
72.68 -> we can see more information which is the whole issue of  phishing and so forth then once we already know
81.02 -> that we have been hacked, we are going to go to our admin panel, to our  administrator panel, to our cpanel and here
89.78 -> to solve it the easiest thing would be that we have a backup, so if we have  a backup, so if we had a backup of our cpanel, then if we had
96.23 -> the backup we would have to go here to backup and we could  go here to backup and we could from the wizards
103.88 -> this one we could do a restore of the whole  web page, it's possible that we don't have the copy of
110.99 -> security then in this case what we would have to do  we would have to do well even if we have the copy of
117.65 -> security in the emails we would also see how these email accounts  these email accounts have been left behind which are
124.07 -> totally fake so we had to delete them  these Anonymous people this isn't ours, they've been
133.02 -> hacked and the other thing would have to be to modify  the passwords of these emails just in case
142.68 -> also had them. Ok then we would be left with  if we didn't have a backup
151.32 -> so the first thing would be to solve the issue of  the database which has also been hacked.
158.58 -> so we go here warning we go here to the  user table because they have also accessed
165.42 -> our Wordpress and here we can see how our  admin user has changed his login
172.44 -> possibly the password has also been changed so we are going to enter our  password so let's enter our pair of
175.98 -> migration with our password that we had and it doesn't let them then we can go back to modify
182.82 -> what is the login we are going to put our name and we can also change the password if
191.73 -> we know what is the password of another user then we copy it and paste it there and if we don't then
196.11 -> we have to do an uncracking because we can't put a normal here we can't put a normal password
201.21 -> then we have to go here for example md5 encrypt because md5 is the password protocol
208.53 -> that it has encryption and here we are going to make an easy one so that we can see how to encrypt it.
219.27 -> and now then here we modify it to this one but then obviously we're going to have this one
225.55 -> to modify, then with this user we can now access the administration panel,
231.33 -> but there is more, we have entered our file manager which in fact has been through here
236.79 -> where they have entered and here they have put in us a lot of files that are corrupted so
246.22 -> what would be the best thing to do because first here in what is the home we could see what is the date of
252.67 -> modification and we could see if they match some with everything that they've done to us so be it here by
258.46 -> example I don't see anything because since ever from 2020 and these files look etc if the tc that May from the
266.86 -> 2021 or if recently when the museum was hacked then all this and all this ours
277.38 -> all of this has been hacked
286.79 -> let's delete the whole folder
292.84 -> what else look let's get in here in public html and here we're also going to look at last
299.67 -> modification oil when the changes have been made and here we changes and here we see that in May 2026 that is
306.03 -> ex sorry in May 2021 which was a week ago, it's been a week ago, so they have put in
310.98 -> all these files and I have done look it has a very strange name some that we don't know.
315.84 -> our this folder of focs this no no no no sounds like nothing to me another tube is another trick
321.37 -> also what we can do would be to download wordpress we download wordpress.org
331.01 -> we download the latest version here
335.51 -> and once we have it here we go to see all the files that would be the
339.92 -> normal ones that you have from the wordpress page we if we go in here and
344.63 -> we compare it because we see that there are a lot of files that are not really traces
349.19 -> then what we could do is is to delete all the files
356.92 -> then simply all these that have fairy hungry so obviously we're just going to delete it
384.71 -> we'll delete them let's see if there's anything else from that date what is this
388.76 -> from this date when there have been problems let's actually see what it is
393.79 -> what there is all this linked this is not is that there shouldn't be anything in lhasa
400.43 -> so all of this we're not going to load it anymore we're also going to see also look at this folder
409.32 -> these are the hanes all of this is leave
414.56 -> and this is also going to remove
419.55 -> and once we have all the possible suspicious files suspicious files removed then we go
425.64 -> to go to open our web page we are going to see how the phishing alert is still there
433.26 -> because we really have to notify google that our page is already there
438.09 -> clean web for recheck actually we could go in already
442.44 -> no problem we tell you here to access this unsecured website we understand the risks
449.82 -> and we can see the web page but the best thing would be to go to webmaster tools
455.25 -> this is what we have to do we would have to go to the google master turn
463.85 -> we should have our website here in the webmaster console but if we don't have it
469.55 -> we can do it now we are on time here I already have it but if I don't it would be to register it
475.83 -> add you can do it through a drive from analytics or by simply uploading a file here
482.13 -> in ftp or in the file manager and you validate it. then once in here we have the problem
489.45 -> detected we are going to give him to open report we have the problem that has been detected request revision
498.28 -> and here it tells us that we have to check the box of exane corrected
503.29 -> all the errors and what has been done to correct the error to fix the error then we're going to say
511.91 -> all files 2
521.25 -> deleted all accounts
529.1 -> all mail accounts
532.8 -> ace breasts and be has not needed and passwords for all sites
544.19 -> we hit send request and wait well well as you can see here in less than 48 hours
553.9 -> and if we go to the notifications we will have received a notification
557.38 -> indicating that the web page has been web page has been checked successfully ya ya
564.08 -> so nothing this has been all I hope you have liked it and you know I hope you liked it and you know if you don't want to have problems
571.4 -> backups it's going to be a lot easier because you're never going to be easier because you're never going to be safe
578.33 -> so nothing thank you very much see you in the next video see you later

Source: https://www.youtube.com/watch?v=Sa4L7ziJnRw