Close the access of most of the employees to the admin panel, localize the problem and “cure” it. If it is difficult to do this, and the contents will have to be restored for a very long time, since most of the files are damaged, it is worth resorting to recovery through backups or contacting your hosting and asking to “roll out” the site for yesterday or the day of the last backup, but then everything that was done before the copy was made will be lost – you will have to implement it repeatedly. After fixing the problem, it is necessary to identify where it came from in order to exclude similar hacks in the future.
If you do not have special skills and are not ready to delve into the minimal aspects of cybersecurity, you should entrust it to professionals – the amount you will spend on timely protection is incomparable with the losses that are possible in the case of fraudsters and hackers.
Recommendations for protection
If one vulnerability was successfully closed, it does not mean that you have protected yourself from new attacks and infections. If the performance of the site is really important, it is simply necessary to take care of its security. In this case, it is impossible to rely on chance – when a break-in happens, it will be too late. A good example is the hacking of the Rutube website: the restoration of the service took several days, during which the site was unavailable. By following simple recommendations, you will be able to be more confident about the security of your site and minimize existing risks.:
Restrict access to the admin panel of the site and allow access only for those who really need it – at the same time, you need to create your own different logins and passwords for everyone. Thus, it will be easier to understand where the virus came from
Differentiate the functionality of users who have access to the admin panel
Secure the computers of all employees of the company by installing high-quality antivirus programs
Use only licensed modules for your sites
Do not create backdoors in the site code
Make a daily backup of the database and website, preferably several times a day
For additional confidence in security, it is worth turning to the services of companies engaged in information security. They will analyze the current vulnerabilities of the site and “patch the holes”.
Entrust the security of your site to professionals or cope on your own – the choice is yours. But it is definitely not worth ignoring this issue. Perhaps you will be lucky and you will never encounter cyber attacks, but, as practice shows, absolutely no one is immune from hacking.