people but bots attacking your site. Hackers have programs that do the work for them. Rarely is it people doing the hacking unless it is targeted. Strong opinion sites are a good example. @michele_butcher
you know it so can someone else. (Brute force attack or man in the middle) • Denial of Service attack (DDoS) ﬂood your site with more trafﬁc than it can handle • Through a theme, ﬁle or plugin • Through your FTP or CPanel. (Files set to read, write,execute. Brute force, anonymous login, shared hosting infection) @michele_butcher
when they have completed their job. If they have posts on your site, you can knock them down to subscribers so they can not change anything on your site. If they are only doing work, delete them when their job is done.
ENVATO (THEMEFOREST, CODE CANYON) ALWAYS CHECK THE BOX TO BE NOTIFIED OF UPDATES. THEY WILL NOT TELL YOU OTHERWISE This is why the RevSlider SoakSoak infection was so widespread. Many didn't know the plugin was built within the theme.
have the plugins you are using at that time on your site. You can always upload them again later. • Only have your theme you are using on your site. • If something is not active, delete it. @michele_butcher