I brought a new site onto my server in December 2024. The client who owns it had suspected malicious activity and surprise to me, there was! Wordfence caught it all on the first scan. I manually cleaned it, including the deletion of the out of date plugin fb-sharing and ran a new scan.
So many websites are out there on the web seeming to run fine but infected and as in this case showing pop-up ads to anyone not logged in. What’s funny is that this site was on a site that has touted its high security practices for over a decade. I have complained to them on numerous clients behalf that they should not disable WordPress functionality to secure a site. Apparently it was not even effective.
The client now has a safe site and the peace of mind knowing that I am personally accountable for their site as they have subscribed to my personal service for maintaining and securing their website.
