The feeling of losing control over your data is very unpleasant. Especially if it will be used for malicious purposes. In the case of the data of your website, for things like phising, malware and infections. In the mail case, to supplant your identity or use your mail as a spammer. To take action as soon as possible we will explain how to find out if you have been hacked.
Find out if they have hacked your website
One of the first things you usually do is scan your website in one of the domain site checkers. A website where you enter your domain and inform you of the security status on a surface layer. It is a first step, but it is very important that in addition to the scanners or domain analysis also analyze the code of your website.
This second type of analysis is deeper and more accurate. It gives you information about infected files, the blacklists where your website is listed and vulnerabilities.
In addition, since 2016 Google gives much more information about the web security of your page. If you go to that section in your Google Webmasters Tools, security section, and you have any notice, you will see something similar to:
Depending on the information provided by Google, we can fine-tune subsequent actions. For this we explain in the following articles some important security tips:
- The basic web security you should apply in your online business
- In the case of WordPress, how to detect viruses and infections and how to solve it
- Some tips on basic security of Joomla and Drupal
- How to get your website blacklisted
Find out if they have hacked your email account (the one you use for everything, including social networks)
You do not have to wait to doubt the integrity of your mail account to check if you are in a stolen database. Thanks to https://haveibeenpwned.com you can know if any of the databases in which your mail is found has been stolen.
In this website you enter your mail and it informs you about its state. If you are part of a stolen database, usually from a website that you have registered to enjoy some service, it tells you when the database was stolen and the name of the application. So you can take the appropriate measures. Basically, change your password by a stronger one.
Particular cases of password-stealing accounts from Facebook, Twitter or any social network, are more difficult to detect. There are still several important issues:
- Have abnormal activity alerts activated: usually when activity is detected from a device that is not the one used, you get a warning to inform you of the device and the time. If it was not you, immediately change the password and apply more security measures if possible.
- Make sure that what you have been stolen is the social network password only. If they also have your email address they can accept the above mentioned notices. So by precaution, also change the mail password as soon as possible.
- As a precaution remember to use the maximum security measures offered by the application. Things like the double factor of authentication, personal questions, etc.
0 Comments Leave a comment