It was Monday morning and I was on a call with a dozen others who are my peers. Each of us helps the small business owner with their businesses in one way or the other. It was at the end of the call and we were each sharing our websites and going over how to make little improvements here and there. Time was running out and there was just enough time for one more website review, I volunteered. As my site was coming up for all to see suddenly the screen turned a maroon red with an outline of a security officer with his hand stretched out and the words of"don't precede malware threat." There was more but I was too horrified to remember precisely what it said. I was concerned on being destroyed plus humiliated the people on the call had seen me vulnerable I had spent hours.
Cloning, as it applies to fix hacked wordpress database, is the act of creating an exact copy of your WordPress install. What's good is that you can do it. There are a lot of reasons. Here are only a few.
There are ways to pull this off, and a lot of them involve copying and FTPing files, exporting get more and re-establishing databases and more. Some of these are very complex, so it is imperative that you select the right one. If you are not of the persuasion that is technical, then you may want to check into using a plugin for WordPress backups.
Exploit Scanner goes through the files on your website place, comment and database tables. Additionally, it notifies you for plugin names that are odd. It doesn't remove anything, it simply warns you.
Black and whitelists pathological-looking phrases based on which area they appear inside. (unknown/numeric parameters vs. known article bodies, remark bodies, etc.).
There is another problem you have with WordPress. People always know they also could just drop by your login form and where they can login and try a different combination of passwords and user accounts out. In order to prevent this from happening you want to install Login Lockdown. It is a plugin that only lets users attempt to login with a wrong password three times. Following that the IP address will be banned from the server for a specific amount of time.