Website got hacked (HELP)

My Website Was Hackedโ€”Need Advice!

A few days ago, my website was compromised. The hackers inserted thousands of URLs that appear to manipulate dynamic links, and all of them redirect to a different site.

The URL format looks like this: mydomain<.>com/?t=xxxxx&filter=xxxxx&share_to_url=xxxx

They also altered the title tags on all my pages, which caused my websiteโ€™s rankings to plummetโ€”this is how I first realized something was off.

Now that I’ve regained control and secured the site, I’m unsure about the next steps. Google Search Console recognizes these URLs as pages, but theyโ€™re not legitimate ones. What should I do, especially since around 20% of them got indexed?

I’m also concerned about recovering the rankings of my original pages. Some had been ranking first for highly competitive keywords for months, but now they’re buried on the second page and beyond. Is there anything I can do to help improve their rankings again?

I would really appreciate any insights or advice!

Hubsadmin

2 responses to “Website got hacked (HELP)”

  1. I’m sorry to hear about your website getting hacked; that can be a really stressful situation. Here are some steps you can take to address both the hacked URLs and your site’s rankings:

    1. Remove the Malicious URLs:
    2. In Google Search Console (GSC): Use the URL Removal Tool to temporarily hide the malicious URLs from Google’s search results. This can help clear them from indexing faster. Since the affected links are dynamic and not part of your site’s original structure, you should also ensure they are set to return a proper 404 status.

    3. Block Access: Implement rules in your .htaccess file or through your CMS to prevent access to these URLs, ensuring that they canโ€™t be accessed by users or crawlers.

    4. Clean Up Your Site:

    5. Double-check that all traces of the hack are gone. Look for any backdoors or malicious scripts that the attackers may have left behind.

    6. Ensure that all plugins, themes, and CMS versions are up to date.

    7. Reinstate Your Title Tags and Content:

    8. If you restored a backup that includes your original titles and meta data, make sure those are reinstated. If you donโ€™t have a backup, manually change the titles back to their original state as best as you can.

    9. Make sure to check for any duplicated content or other on-page SEO elements that might have been altered.

    10. Submit a Reconsideration Request:

    11. Once you’ve cleaned up everything and ensured that the site is secure, you can submit a reconsideration request through GSC. Explain the situation and the steps you took to resolve it.

    12. Monitor Your Traffic and Rankings:

    13. Keep a close eye on your traffic and keyword rankings through analytical tools or GSC. It may take some time for the rankings to recover, so patience is key.

    14. Consider creating high-quality content or resources to encourage backlinks and traffic to your site, which can help improve its authority again.

    15. Regular Backups and Security Audits:

    16. Going forward, ensure you have regular backups of your site and consider security plugins or services that can help protect your website from future attacks.

    17. Seek Professional Help if Needed:

    18. If you’re feeling overwhelmed, don’t hesitate to reach out to a cybersecurity professional or an SEO consultant who can assist you with recovery strategies tailored to your situation.

    Remember, SEO recovery after a hack can take time, but with consistent effort and monitoring, you can get your site back to where it was. Good luck!

    Reply

  2. I’m sorry to hear about your website’s security breach; that can be a distressing experience. Youโ€™ve taken a great first step by securing your site again, but there are a few additional actions you can take to address the aftermath of the hack and improve your rankings.

    1. **Remove Malicious URLs:** Start by removing the hacked URLs from your site. You can do this through Google Search Console by submitting a URL removal request. This will signal to Google that these pages are no longer part of your site.

    2. **Check for Backdoors:** Ensure that there are no lingering security vulnerabilities. Hackers often leave behind backdoors that can allow them to regain access. Conduct a thorough security audit and consider using reputable security plugins to scan for any remaining malicious code.

    3. **Resubmit Your Sitemap:** After cleaning up the compromised elements, update and resubmit your sitemap via Google Search Console. This will help Google re-index your legitimate pages and can speed up the recovery process.

    4. **Optimize for Recovery:** For the pages that were affected, focus on improving their content quality and relevance. Update your title tags, meta descriptions, and ensure internal linking is optimized. High-quality, relevant content can help regain trust and authority in the eyes of search engines.

    5. **Monitor Backlinks:** If you have strong backlinks pointing to your site, monitor those. You may want to reach out to webmasters of those sites and inform them of the hack, asking them to remove any links to the

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *