Our woocommerce got AD URL redirection hack


#1

Hello,

Someone used URL redirection to AD website, so enabled WAF and selected block action for all event, what I can to do ?

Thanks


#2

I have sincerely no idea what the issue is. There is a redirect, all right. Remove that and it - naturally - wont redirect any longer. Right?

If not right, you need to post the URL you are having the issue with and describe it in detail.


#3

Hello,

The Sensitivity set to Medium and Action is Block, but still can redirect…

Thanks


#4

It’s most likely your site has been compromised. If you’re not running Wordfence on that site, you should. I can detect hacked code. If you post the URL, we can take a closer look.


#6

Hello sdayman,

My colleague told me that we are using Wordfence free version.

The hacker changed Options > siteurl in Wordpress DB.

If you can detect hacked code , how can I send you URL in private message?

Thanks


#8

Wow…that was a typo on my part. It’s supposed to say “It can detect hacked code.” I apologize.

Have you installed Wordfence?

You can change the site URL in wp-config.php:
https://codex.wordpress.org/Changing_The_Site_URL


#9

Wordfence installed with free version.

oh, you typo, we have change site URL in wp-config.php already.

Thanks