#NoHacked 3.0: How do I know if my site is hacked?


Vorige week is #NoHacked terug op onze G + en Twitter- kanalen! #NoHacked is onze sociale campagne die tot doel heeft om bekendheid te geven aan hackaanvallen en tips te geven over hoe u uw sites kunt beschermen tegen hackers. Deze keer willen we delen van de inhoud van #NoHacked-campagne op deze blog delen in uw lokale taal!

Waarom worden sites gehackt? Hackers hebben verschillende motieven voor het compromitteren van een website en hackaanvallen kunnen heel verschillend zijn, zodat ze niet altijd eenvoudig kunnen worden gedetecteerd. Hier zijn enkele tips die u helpen bij het opsporen van gehackte sites!

  • Ermee beginnen:

    Begin met onze gids "Hoe weet ik of mijn site is gehackt?" als u een beveiligingswaarschuwing van Google of een andere partij heeft ontvangen. In deze handleiding worden de basisstappen doorlopen om te controleren of er tekenen van compromissen op uw site zijn.

  • Begrijp de waarschuwing op Google Zoeken:

    Bij Google hebben we verschillende processen om met hackscenario's om te gaan. Scantools detecteren vaak malware, maar ze kunnen sommige spamming-hacks missen. Een schoon vonnis van Safe Browsing betekent niet dat u niet bent gehackt om spam te verspreiden.

    • Als u ooit ziet "Deze site is mogelijk gehackt", is uw site mogelijk gehackt om spam weer te geven. In essentie is uw site gehackt om gratis advertenties weer te geven.
    • If you see "This site may harm your computer" beneath the site URL then we think the site you're about to visit might allow programs to install malicious software on your computer.
    • If you see a big red screen before your site, that can mean a variety of things:
      • If you see "The site ahead contains malware", Google has detected that your site distributes malware.
      • If you see "The site ahead contains harmful programs", then the site has been flagged for distributing unwanted software.
      • "Deceptive site ahead" warnings indicate that your site may be serving phishing or social engineering. Your site could have been hacked to do any of these things.
  • Malvertising vs Hack:

    Malvertising happens when your site loads a bad ad. It may make it seem as though your site has been hacked, perhaps by redirecting your visitors, but in fact is just an ad behaving badly.

  • Open redirects: check if your site is enabling open redirects

    Hackers might want to take advantage of a good site to mask their URLs. One way they do this is by using open redirects, which allow them to use your site to redirect users to any URL of their choice. You can read more here!

  • Mobile check: make sure to view your site from a mobile browser in incognito mode. Check for bad mobile ad networks.

    Sometimes bad content like ads or other third-party elements unknowingly redirect mobile users. This behavior can easily escape detection because it's only visible from certain browsers. Be sure to check that the mobile and desktop versions of your site show the same content.

  • Use Search Console and get message:

    Search Console is a tool that Google uses to communicate with you about your website. It also includes many other tools that can help you improve and manage your website. Make sure you have your site verified in Search Console even if you aren't a primary developer on your site. The alerts and messages in Search Console will let you know if Google has detected any critical errors on your site.

If you're still unable to find any signs of a hack, ask a security expert or post on our Webmaster Help Forums for a second look.

The #NoHacked campaign will run for the next 3 weeks. Follow us on our G+ and Twitter channels or look out for the content in this blog as we will be posting summary for each week right here at the beginning of each week! Stay safe meanwhile!


Source: webmasters.googleblog.com