Not sure if it’s Cloudflare-related or not…
A week ago, our website was hijacked by a zero-day vulnerability in a Wordpress plugin. It would redirect traffic to a malicious site right away (even from within Wordpress).
We’ve cleaned it up within a day, and disabled the plugin, changed the passwords, did multiple scans of the website to make sure it’s clean.
We also have the Cloudflare Wordpress caching plugin.
ever since then, we’ve been encountering “403 Forbidden / You don’t have permission to access the site”. This only happens on some IPs (if using VPN on the same computer, some IPs will get this, others will not). Country doesn’t seem to be a consistent source of 403s either.
We tried to disable the Cloudflare plugin, which seems to have reduced the 403s, but not entirely-eliminate them.
Hosting company doesn’t see any problems, says nothing’s being blocked.
Pinging works just fine.
Site is https://www.eyeseverywhere.ca
Any suggestions/recommendations would be appreciated!