How to Prevent Re-infection After Restoring From Backup Print

How to Prevent Re-infection After Restoring From Backup

1. Assume the root cause still exists until proven otherwise:

   1. Vulnerable plugin/theme

   2. Stolen admin credentials

   3. Insecure file permissions

2. Immediately update:

   1. WordPress core

   2. Plugins and themes

3. Remove unused components:

   1. Deactivate and delete unused plugins/themes.

4. Rotate all passwords:

   1. WordPress admin

   2. Hosting control panel

   3. FTP/SSH (if applicable)

   4. Database users

5. Check admin users:

   1. Remove unknown accounts.

6. Scan files:

   1. Look for recently modified suspicious PHP files.

7. Turn on protections:

   1. Enable 2FA where available.

   2. Add security plugins (as appropriate) and keep them updated.

8. Monitor:

   1. Watch for redirects, spam pages, new admin users, or unusual traffic spikes.