ISIS hack on my server / droplet

Posted March 9, 2015 3.4k views

Hi, had an IS Hack on my server. So far it was apparently easy to remove by removing the index.php /.htm /.html files. Anyone with similar experience. I still have no idea how they came in. I’ve checked everything, but found nothing unusual

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer

You should back up any needed files, checking them carefully, destroy your droplet and start with a clean one. If you are unable to identify the attack vector it is very likely that the droplet remains open to the attacker.

  • I concur with the previous response. I had a very serious hack a few days ago. They tried to set up a new site and I destroyed everything (Files are offloaded) What really was bad about mine as it was on my home server.