It’s been a while since my blog was last hacked. This time it was more subtle – there was some malware causing redirection shenanigans leading people to other sites instead and set off Chrome’s unsafe site warnings. I thought I solved it by creating a new copy of my blog (and losing my old theme in the process) and deleting all my old files. I changed my passwords and installed some security plugins. It’s been fine for the most part and everything seemed okay for a while. But over the past few days I’ve had malware warnings again and notifications about failed logins and files being uploaded to my blog.
Obviously something is up but I have no idea what. I deleted and restored the files on my blog and everything seems okay again. Today I enabled 2 factor authentication. Hopefully that solves the problem. Because if someone else is getting in without my knowledge, I don’t know what else to do. My web host can’t seem to offer any solutions either, claiming that it’s probably a WordPress issue and that I should create my own CMS or switch to an alternative – something I wouldn’t mind doing if it wasn’t so much of a hassle.
WordPress makes blogging so easy and I’ve got everything setup the way I want it. If I were to move the blog to another service, it would break ALL the internal links on my site. Not a good idea, obviously. But if I keep getting attacked, I don’t see an alternative. Maybe go back to blogger or have my site hosted on wordpress.com – which would be terrible. If anyone has any solutions, I’m all ears. But for now, I hope 2FA is good enough.
Also, I don’t understand why hackers would want to target my site. I honestly have zero traffic – I max out at around 30 visitors a day, usually it’s less than 5 people. Nobody shares my articles besides myself. The only ones that have any traction are posts about my Vortex Core and Whorecraft review (I kid you not, I get search results for it almost every month – unfortunately the images don’t even load anymore because I wiped my web space, also it’s such a shitty review, it doesn’t do the movie any justice).
But back to why I’m targeted. I know it’s the result of random attacks – hackers sniffing sites on the internet, finding those with weak security and injecting malware into them. They don’t care that I’m just another blogger with nothing important to say – to them I’m just another conquest (if you can even call it that). They’ll take what they can get to increase their botnets. Hopefully none of my readers are daft enough to fall for fake links (trust me, you won’t find singles in your area clicking those shady links).
Even though these words will fall upon deaf ears, I just hope they will leave me be. Trying to get rid of malware is exhausting. There’s only so much effort I want to put into maintaining this site. The whole reason I’m using WordPress is because it’s free and isn’t supposed to be high maintenance. Please exclude me from your attacks.
In other news, I’ve been slowing down my writing recently. I have either been too busy to write or not bothered to write when I have the time. I think it’s because I found the quality of my writing going down. If I want to put something up, it should at the very least be worth my reader’s time. Not that any of us gain anything from it. Time is a limited resource after all.