Photo by Emily Webber
Photo by Emily Webber

If you’ve visited in the last few days, you would have noticed a sad-looking maintenance page and little else. And for a couple of weeks prior to that, a Google search of FilmScoring.info made it appear we had begun selling Accutane as a side business (it still does, until the Google bots return). Alas, both were the result of a common WordPress hack.

We’re back up and running, and I’m fairly certain all traces of malicious code have been removed. In the process, I’ve learned a good bit about common WordPress attacks and why WordPress security is necessary, even on a fairly obscure site like this one. Unfortunately, due to the popularity of WordPress and the naivete of some of its users (myself included), it’s not unusual for new bloggers to get attacked. The upside is that it’s also not hard to protect your site and make it significantly more difficult for hackers to get in. Here are a few tips.

And now that the site is back up, I’m working on a number of cool posts, including an in-depth analysis of “Bohemian Rhapsody” and numerous tips on melody, harmony, mixing, spotting, and working with directors. Stay tuned, and stay secure!


  1. Bryan Hoyt

    Sorry to hear you were hacked, but really looking forward to the Bohemian Rhapsody analysis

  2. Terry Jones

    Sorry to hear this has happened to you Jeff, although you’re not the first person I know to be hacked in this manner. Cheers for the tips though, I’ll be moving over to a WordPress based site myself in the not too distant future so those links are very helpful!

  3. Eric Goetz

    Sorry to hear you got hacked, Jeff. WordPress is notoriously vulnerable, though it’s gotten much better in the last few years. I didn’t know about many of these items.

  4. Jeff Tolbert

    Yes, it is, although it’s much less vulnerable if you keep everything updated (which I wasn’t very proactive about for a while). There are loads of security tips out there. Some of them do require a little bit of knowledge, like editing your .htaccess file–not so hard if you have one, but if you don’t, you need to figure out how to create one. But a lot of them are super-easy and there are plugins that do a lot of the work for you.

    Anyway, I’m grateful for all of the tips out there on the web about cleaning up hacks and securing your site. If anyone has any specific questions you can contact me directly via the Contact link above.