our cloudflare account was hacked and all domains now redirect to a 3th party scam website
we checked all DNS settings and also hosting s=upprt checked if domains working local
one domain is buyfans dot org , …
how can someone redirect all domains at ones ?
what the hacker has done to do that ?
before we have to delete all domains , hope someone here can help
First, you should change your account password and activate Two-Factor-Authentication if you have not already done so.
Then, you should disable all existing API-Tokens and API-Keys and create new ones for any plugins you use. Make sure you update your plugins, as the attack is likely coming from a plugin that had a security breach recently (can’t remember the name now).
After you have done this, check your Cloudflare account for any Page-, Redirect- and Bulk-Redirect Rules and disable them if you did not create them.