Question

Someone hacked into my DigitalOcean account

Posted August 9, 2021 80 views
CentOSPostgreSQL

They removed certain functionalities for web application. How can I restore those functions and prevent this from happening again?

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
1 answer

Hi there,

If it was only your web server that got compromised, I would recommend restoring a backup for your Droplet:

https://docs.digitalocean.com/products/images/backups/how-to/create-and-restore/

Then once you’ve restored your web server back to a working state, I would recommend scanning your website for malicious files and also installing all of the latest security patches. For example if you are using WordPress, you could follow the steps on how to do that here:

https://www.digitalocean.com/community/questions/how-to-secure-wordpress-without-a-security-plugin

In case that you believe that someone gained access to your DigitalOcean control panel, I would recommend the following:

  • Change your password to a very strong one
  • To prevent this from happening again, enable 2FA.
  • If you are still seeing the problems, I would recommend contacting the DigitalOcean support team.

Regards,
Bobby