A small business owner I know just had her Wordpress site hacked. Unfortunately I am not her web master or developer otherwise I may have more insight into the nature of this. However I want to research the nature of this hack and relay that info to her.
The base url of her site was changed. Example: her business could be “myfashionclub.com” (it’s not) and customers could go to the “myfashionclub.com/shop” page. Accessing the homepage is fine. However the base url for links now redirects to another hacked site so the result is something like, “sandiegorealty.biz/shop”.
Is this a common hack? I want to find out if the database was accessed in order to perform this. I’m guessing, yes? Is anyone familiar with this or are there articles about this?
No need to offer advice on prevention. She was using a version of Wordpress that was 3 years old, so yeah.