Posted by - Rory Millikin at Jun 23, 2022 Raska, Serbia
Toogit Instant Connect Enabled
Jul 14, 2022
We need a website security specialist, specifically with Wordpress. Our server was attacked with a SQL injection and our websites were then altered with a base64 encode attack. We believe it partly had to do with out-of-date themes and/or out of date wordpress installations on our sites. We cannot just remove the base64 strings because it brings down the sites and decompressing the code reveals some useful details but some of it is not human readable and there are some complex usages of php escape sequences to make the code even harder to read. I do repeat, the base64 can't just be deleted. We need to figure out what it is calling off of so that the sites won't be brought down when the string is finally deleted.
Something else to know, the code is within the page.php files within the themes folder and supposedly this code affects the timers on the websites.