Comments on: Bluehost website got hacked?

By: bluecheese

bluecheese — Tue, 07 Sep 2010 09:00:20 +0000

From my experience i suspect bluehost servers are not secure enough, I had many clients who got malware on their site on BH, but there was no way through scripts, because their sites were not very active and I know their scripts. and the way of the attacks shows that someone gained access to root, something we don’t even have access to. I’m not making claims against bluehost neither accusing them, but I think somebody should get to the bottom of this, and bluehost should do something about it. with all those cheap people who don’t listen to advice and get attracted by BH ads, BH owes customer in return. but it might be it is all coincidence. and I understand it is tough to secure servers. but shared servers are outdated now, time to move out to better tech.

By: Naxieli Gomez

Naxieli Gomez — Mon, 09 Aug 2010 22:26:58 +0000

My website was hacked too and the company blamed ME! for it. They said I must have given my log in info to the hackers. And they are also charging me $50 to clean it up. Unbelievable.

By: Harold King

Harold King — Wed, 14 Jul 2010 00:22:35 +0000

BLUEHOST SECURITY AND CUSTOMER SUPPORT IN THAT DEPARTMENT IS TERRIBLE. Got hacked countless times redering my sites and email unusable. Had to switch hosts.

By: Carol

Carol — Sat, 03 Jul 2010 07:43:51 +0000

I’m having similar troubles with Bluehost right now. Site deleted six times in the last month, no matter what I do (per their instructions) to harden them.

Now, facing the possibility of re-loading a large site for the seventh time (with no help from Bluehost “support” — which I used to love) and my account about to expire shortly anyway, I’m definitely thinking about a change in hosts.

By: Scott

Scott — Fri, 11 Jun 2010 19:23:58 +0000

There is a glitch in Dreamweaver that try it tries to retain the old password even though it has been changed. The easiest way to fix the problem is to create a new connection through site manager.

Unless you are a hacker you will have no idea how vulnerable WordPress, Joomla, and other FREE programs are to hack. There are new vulnerabilities found to access sites using these programs on a weekly basis (almost daily for Joomla.. see http://joomlaexploit.com). The programs themselves are fairly secure, it’s the plugins and components that render them highly vulnerable. It is not Bluehost’s responsibility to make sure YOUR scripts are up to date. IT IS YOUR RESPONSIBILITY to maintain the security of your site. They can only do the best they can, but it’s the customer;s ultimate responsibility to stay updated. Hackers can delete every file on your account by uploading a single shell script (look up c99 or r57). Since all of the recent attacks on Network solutions and Godaddy, Bluehost has increased the security of their server dramatically, unfortunately if your code is out of date you will still be hacked regardless. They are planning on rolling out an Intrusion Detection System, that will prevent certain files from being uploaded. If you want to be as close to 100% secure, then invest in a monitoring service like Sucuri or SecureLive.

By: Bluehost Review

Bluehost Review — Fri, 23 Apr 2010 02:25:15 +0000

from your dreamweaver, open the web file, code view, and make sure the directory or images html code is not getting source from local computer C:\

for directory, you can use
“../” as refering to website homepage.
“../image/” as refering to image directory in homepage dir.

by this, when you use filezilla to upload files to web server public_html folder, your webfiles can be executed and get images etc from the public_html folder and subdir as well. not from your local C:\.

Do double check.

By: Linda

Linda — Tue, 20 Apr 2010 20:11:25 +0000

Dreamweaver worked seamlessly before these change. I have tried using filezilla MANY times after having placed my files in public_html on my local computer. The directories are different, images and links are broken and things come over differently.

By: Bluehost Review

Bluehost Review — Tue, 20 Apr 2010 15:30:49 +0000

is the dreamweaver failed with the remote server file uploading?
you can use the dreamweaver to create and edit your website content… but place the web files at local computer…
then use the filezilla to upload the web files over to server…
*filezilla support the new bluehost password requirement.

By: Linda

Linda — Thu, 15 Apr 2010 16:25:31 +0000

Bluehost has rendered almost 7 years of my work obsolete by changing a password that does not work with my Dreamweaver software. They said my software is suddenly obsolete so I needed to purchase the upgarde which is HUNDREDS of dollars. I am absolutely horrified. They simply DO NOT CARE ABOUT THE CUSTOMER AT ALL! I was told they would hook me up to billing for a refund! I HATE THEM NOW! I have been reduced to tears, on the phone for many, many hours and nobody will help me. Developers have never returned calls even though my case was escalated more than once. My work iand my clients work is being held hostage because they REFUSE to support me….I was never given any warning at all. This is a known issue and I am literally screwed as are my clients who also use the same software. All I can say is that Matt Heaton (I had great respect for him) is a great example of success having gone to his head. He too has ignored my letter and my pleas for assistance. They just blew me off! I hope everybody out there gets a grip on Bluehost because they are not the company they used to be! Now they employ a bunch of arrogant “know-itall” type geeks who would just rather blow you off than deal with tye issues they have caused.

By: Marcus

Marcus — Wed, 14 Apr 2010 20:17:03 +0000

Same issues as others… I got hacked a while back… fixed the problems…updated all scripts, changed passwords, did everything they advised… sites were back up then they shut them down today because 1 site was hacked again… now they won’t let me put them back up until I’ve outlined the details I took to fix their mistakes. None of my sites on MT or hostgator or even a few other bluehost servers have ever been hacked. Just this same server the same way. Avoid bluehost unless you want to spend more time fixing servers than making money with a live website.