This site utilizes JavaScript to function correctly. Looks like it's disabled on your browser. Please enable it for your best experience.

For instructions on enabling JavaScript, click here

Skip to main content

Just Host Web Hosting Help

How the Social PNG Hack Works

Overview

The Social PNG hack is a method used to alter a websites behavior or content. A hacker may make a file containing malicious code and format the file to appear as an image. The image will follow the png format and will often be called social.png. This is done so that it appears to be a common and harmless file that any website might have normally.



How You Get It

There are many ways the file could have been placed on you website, too many in fact to cover all of them. The most likely is that it came from a plugin or theme that you installed on your site which included the malicious file. Often you would have no idea you were uploading an infected file to your site as the hacker would make the plugin look as legitimate as possible.

What it Does

Once the file is on your site, the hacker can control your site and manipulate it in any number of ways. You may not notice anything at all or you may see any of the following:

  • Your site starts redirecting to another site
  • Links to another site start appearing on your site
  • Unwanted advertisements may appear on your site
  • Search engines and browsers may start warning that your site is dangerous
  • Your site may simply break and show a white page or an error message.

There are other ways it may manifest itself or it may not manifest itself at all and instead work quietly behind the scenes just gathering data and using your processing power.

What to do if You Have It

If you aren't sure how to identify compromised files or correct them, consider a professional malware cleaning service like SiteLock clean the site for you.

If you are a developer or very familiar with the website, consider the following courses of action.

  • Identify the infected social file and remove it, identify any other files that have been changed and make corrections as necessary.
  • If you know when the file was placed on your site, replace your website with a clean copy from a backup taken prior to the infection.
  • Have a professional malware service like SiteLock clean the site for you.
Knowledgebase Article 30,449 views bookmark tags: hack security wordpress


Was this resource helpful?

Did this resolve your issue?


Please add any other comments or suggestions about this content:





Recommended Help Content

Uninstall a WordPress Plugin
Knowledgebase Article 35,464 views tags: security wordpress

How to Delete or Uninstall a WordPress Theme
Knowledgebase Article 107,596 views tags: security wordpress

What can I do to increase my Site Security while hosting with Just Host?
Knowledgebase Article 261,572 views tags: antivirus basic hacked keyloggers malware php security site

Related Help Content

This article will explain how to change the Site URL or Home URL setting in WordPress. This may be useful if you have moved your WordPress site or are planning to move your WordPress site.
Knowledgebase Article 107,183 views tags: home site url wordpress wordpresstools

If you have a WordPress blog hosted on WordPress.com, you can easily export it and import it to WordPress that is installed on your hosting account with justhost. Login to the WordPress Data
Getting Started Article 468,816 views tags: blog export file import wordpress

This article will explain how to login to a WordPress site using WordPress tools.
Knowledgebase Article 77,728 views tags: login wordpress wordpresstools

This article will explain how to login to a website created with WordPress.
Knowledgebase Article 252,364 views tags: access admin change dashboard edit login site wordpress

Learn how to use WordPress, WordPress started as just a blogging system, but has evolved to be used as full content management system and so much more through the thousands of plugins, widgets, and themes now available.
Knowledgebase Article 690,882 views tags: blog buildersonline website wordpress

This article will explain why you see "Your WordPress site appears to be infected with malware. Please update to remedy this problem."
Knowledgebase Article 100,500 views tags: malware wordpress wordpresstools

Prevent Spam These steps will help you prevent users and robots from posting Spam on your WordPress blog. Inside the WordPress Dashboard, select Settings in the navigation bar on the left. From the G
Getting Started Article 128,355 views tags: comment scroll spam wordpress

We provide a program which makes it very easy to install third party scripts to your hosting account. If you want your website to have a WordPress blog, you can use MOJO Marketplace to install WordPress.
Getting Started Article 797,693 views tags: blog install scripts simple wordpress

** Google ad credits are only available to customers in the United States, Canada, and the United Kingdom at this time.

¹ VAT (Value Added Tax) is not included in our advertised price and will be charged separately and itemized on invoices and billing information. Standard VAT rates based on EU Member State regulations may apply. Learn more.