There are few frequently possible site infections. In the most of the cases the main site page is replaced with another one, uploaded by a hacker. There are also specialized hackers who upload whole programs to the website, in order to take the website’s domain and look for big security holes.
This is most likely a result of a compromised and not fully updated application, site, exploitable php scripts, etc, which can be used by the attacker (most of the time an automated spider).
Important note: all websites are prone to attacks.
Most of our clients are using more than one application and/or 3rd parties software. In these cases knowledge is required about how to avoid attacker attempts.
Here are some useful advices:
Regular update of each application. /needed/
Regular changing of passwords /control panel, ftp, email /. /highly recommended/
Regular reviewing and investigating for malicious content. /highly recommended/
If you are currently using WordPress platform, please review the following article as well:
WordPress Security Tips
The update of your applications is a process, which can be handled by yourself. This can be done automatically or manually.
Please note: if the application was manually installed, it should be manually updated as well. An automatic update can be done trough the application’s web administration /recommended/ or cPanel’s Softaculous interface.
Here are some related pages with information, describing this process for two of the most common platforms – WordPress & Joomla
You can use Feedburner by Google in order to subscribe for newsletters reporting all new security updates.
The link below is for WordPress update reminder subscription: