by | 22 Feb 2016

How do I know if my eCommerce site has been hacked?

There are many ways you may find out that your website has been hacked. The most obvious is when the hacker has simply defaced your website. You wake up one morning, open your browser and low and behold, your website is no longer there. It has been replaced by a new page and has a big sign saying “Hacked by ….” Or even worse, you get redirected to, hmmm, let’s call it an “unsavory” website. Well, in those cases it is obvious that you’ve been hacked but it is not always the case. Discover in this article, serveral ways to check if your eCommerce site has been hacked.

Cybersécurité pour boutique ecommerce

Discover now if your eCommerce site has been hacked

Hackers often try to cover their tracks so that it isn’t obvious that a site has been hacked. They’d really prefer that you didn’t know about it, because they want to use your site as long as they can to do their dirty work.

Here are some big signs that your website has been hacked:

Your home page has changed

If you visit your website, and instead of seeing the page you have created you see something entirely different it’s likely that your page has been “defaced.” Normally, these types of hackers will have a “hacked by…” message displaying to take credit for the hack.

Your access to admin pages no longer exists

If you cannot access your admin section of your website, it’s possible the hacker has gained access to the adminsitrator account or cpanel and altered the passwords.

Check Google Webmaster Tools

Google will watch your site for problems when it scans and report any problems back to you in Google Webmaster Tools. Unfortunately while it is very good at telling you about the problem it is also very good at telling your customers as well. This is what causes the warning boxes to pop up in your browser when visiting a site.

Take a look at your files

If you’re familiar with code and your site files (and if you manage your own site, it’s a good idea to get familiar as soon as possible), the first step is to examine your site files and code for problems. What kind of problems? Most hackers attack modern websites at three critical points: .htaccess files, .php files and media files.

These file types lend themselves to exploitation by hackers, particularly if you have a lot of unnecessary files cluttering up your site’s file folders. Hackers can insert hidden links to malicious sites, or embed code right in these files. One particularly nasty trick is to encrypt the code with base64 encoding, especially at the end of .php files. This effectively disguises links, malware and other bits of evil behind seemingly innocuous code. A quick search for “base64” throughout your entire site is a good way to find it.

Cleaning a hacked eCommerce website

With the massive growth in cyber-crime, it’s a sad fact that it’s highly likely to become a question of “when” rather than “if”. That is why  I wrote my previous blog post on « Your eCommerce has been hacked and you don’t know how to recover? ». In his article, I describe an action plan designed step by step, to recover your website from a hack, that SMEs can easily follow.

Guarding your eCommerce against future hacks

Do not be passive, protect your eCommerce site right now with an appropriate cybersecurity solution. OZON is a cybersecurity solution designed for all major eCommerce platforms including PrestaShop, Magento and WooCommerce. With our security experts on your side, focus on your business. So to ensure the security of your PrestaShop or Magento site, test our solution now. Block attacks, frauds, find vulnerabilities and malwares are now our business.