{"id":489,"date":"2013-06-10T16:12:17","date_gmt":"2013-06-10T23:12:17","guid":{"rendered":"http:\/\/www.ultimatewb.com\/blog\/?p=489"},"modified":"2024-01-20T22:46:32","modified_gmt":"2024-01-21T06:46:32","slug":"joomla-website-keeps-getting-hacked-do-this","status":"publish","type":"post","link":"https:\/\/www.ultimatewb.com\/blog\/489\/joomla-website-keeps-getting-hacked-do-this\/","title":{"rendered":"Joomla website keeps getting hacked? Do this."},"content":{"rendered":"
\n
\n \n \"joomla\"\n <\/picture>\n <\/a><\/figure><\/div>\n\n

There has been a rash of brute force login attacks on not only WordPress blogs and websites as discussed in the previous post, but also Joomla websites.\u00a0 Of course we would say a great solution would be to switch to UltimateWB software, and fast!\u00a0 But, if you are determined to keep your website on Joomla for now, there is one thing you can do after you clean up all the files and reupload a fresh copy of the CMS – restrict the ips that can login to your Joomla website admin panel.<\/p>\n

Here\u2019s how to do it:<\/p>\n

Add these lines to your existing Joomla admin directory.htaccess file, or create a .htaccess file if you don\u2019t have one yet.\u00a0 This example limits ips to Joomla’s admin section.\u00a0\u00a0 The file \u201cindex.php\u201d can be modified to any file that may be at risk of being targeted for brute force attacks.<\/p>\n

Joomla Admin .htaccess Location: \/joomla-directory\/administrator\/.htaccess file:<\/p>\n

examples:
\/joomla\/administrator
\/httpdocs\/administrator (root directory installations)<\/p>\n

Lines to add:<\/p>\n

<FilesMatch index.php>
Order Allow,Deny
Allow from 123.123.123.123\u00a0 (replace with YOUR IP)
#Allow from 123.123.123.121 additional lines can be added from multiple IP access
#Deny from all
<\/FilesMatch><\/p>\n

This should protect your Joomla admin section and only allow specified IP(s) access.\u00a0 You can also duplicate this code and modify it to protect other files on your account.<\/p>\n

Easy!\u00a0 Contact us<\/a> if you have any questions, or post a comment here.<\/p>\n

**Make sure you have removed any “backdoors” on your Joomla website, inserted by the hacking.\u00a0 Follow the similar instructions provide here for WordPress websites\/blogs: WordPress website hacked? How to fix it\u2026!<\/a><\/p>\n

Related Posts:<\/p>\n

What are the Drawbacks of Using an Open Source Website Builder?<\/a><\/p>\n

Open Source vs. UltimateWB: Making the Right Choice for Your Website Builder<\/a><\/p>\n

Are you ready to design & build your own website? Learn more about\u00a0UltimateWB<\/a>! We also offer\u00a0web design packages<\/a>\u00a0if you would like your website designed and built for you.<\/p>","protected":false},"excerpt":{"rendered":"

There has been a rash of brute force login attacks on not only WordPress blogs and websites as discussed in the previous post, but also Joomla websites.\u00a0 Of course we would say a great solution would be to switch to … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[336],"tags":[371,372,373,369,305],"class_list":["post-489","post","type-post","status-publish","format-standard","hentry","category-website-security-2","tag-joomla","tag-joomla-hacked","tag-joomla-security","tag-secure-website","tag-website-hacked"],"_links":{"self":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/489"}],"collection":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/comments?post=489"}],"version-history":[{"count":2,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/489\/revisions"}],"predecessor-version":[{"id":4482,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/posts\/489\/revisions\/4482"}],"wp:attachment":[{"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/media?parent=489"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/categories?post=489"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ultimatewb.com\/blog\/wp-json\/wp\/v2\/tags?post=489"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}