Cybersecurity3 June 20267 min read

How to Fix a Hacked Website (Step-by-Step)

Has your website been compromised? Don't panic. Follow these exact steps to clean the malware and secure your site.

Step 1: Take the Site Offline and Backup

Before you touch anything, make a complete backup of your files and database. Then, put your site in maintenance mode to protect your visitors.

Step 2: Scan for Malware

Use tools like Wordfence or Sucuri SiteCheck to identify malicious files. Look for weird PHP files in your uploads folder or base64 encoded strings in your headers.

Step 3: Clean the Code

Replace core CMS files with fresh copies. Manually inspect your theme and plugin files. If you aren't a developer, this is where you should hire a professional.

Step 4: Change All Passwords

Update your hosting, FTP, database, and admin passwords immediately.

Step 5: Resubmit to Google

If Google blacklisted your site, use Google Search Console to request a review once the site is clean.

Read Next

SEO10 min read

The Ultimate Guide to Small Business SEO in 2026

Everything you need to know to outrank your local competitors and dominate the Google search results this year.

Read Article →
Cybersecurity5 min read

How to Detect Malware on Your Website

Not all hacks are obvious. Sometimes malware runs silently in the background stealing data. Here is how to spot it.

Read Article →
Reviews5 min read

Best Affordable Website Builders for Small Businesses

Reviewing the top website builders for small businesses on a budget, and when you should hire a pro instead.

Read Article →