Having a plugin hacked on your website is a horrible thing to happen. Firstly there is the reputational damage – a hacked plugin can mean your website automatically redirects somewhere unpleasant, is covered with adverts for unsavoury things or simply isn’t there. The plugin hack can also lead to longer term damage if search engines such as Google decide to blacklist your site. And apart from all that, there’s the hassle of getting it fixed.
But, let’s face it, you don’t need me to tell you that having a plugin hacked is a bad thing. What you really need to know is what to do if you’ve had a plugin hacked on your WordPress website.
If you don’t feel confident undertaking any or all of steps two to seven after you’ve had a plugin hacked, contact a WordPress website developer, who will be able to help. And if you want to minimise the damage caused by having a plugin hacked again in the future, ensure that your site and all its plugins are kept up-to-date. You can do this yourself or invest in a WordPress support package that gives you the reassurance you need.