We’ve recently had a breach on our website where our files were modified and accessed by a hacker. Mostly prescription medication html pages were added to our website (and Google has sent us alerts letting us know that are website has been hacked.) If you google us, there is a red warning that states "This website may be hacked."
We’re looking for someone who can find where and how our website was accessed and remove the immediate threat, as well as harden our website to ensure this doesn’t happen again.
We are on a virtual server and currently running the premium version of Sucuri.
We had someone recently change our htaccess files on our WP website because our sticky navigation menu wasn’t working. Not sure what he did, but I am assuming the change probably made our server vulnerable and allowed someone entry into our admin area.
In addition, we also need these done:
Allow access to wp-admin only for spacified IPs.
Make sure permissions are correct
Add the following strings to the .htaccess file:
deny from all