As Joomla site recovery specialists, we are regularly approached for help and see the same Joomla vulnerabilities come up time and again. What's sad is that they are incredibly easy to correct, but once a Joomla site is hacked it comes at considerable cost to get it fixed and secure again.

In this blog post, we will look at the five most common security issues and how to correct them.

As a business owner site security should be a priority, it is, in fact, your company “face” to the whole world. There is nothing worse than opening up Google Analytics to see that everything has plummeted.

The frightening thing is this could happen and if Joomla website owners don’t know or fail to google their own page, it can easily get lost in the shuffle.

One of the first symptoms that some Joomla website owners see that indicate they've been hacked is when they Google their own site and instead of seeing information in the search results about their product or service they instead see Japanese characters, advertising for shady products (casinos, payday lenders, imitation fashion goods, pharmaceuticals) or links to pages that shouldn't exist and contain information about another domain's spam offering.  

Occasionally, the search results even look legitimate and reflect the actual website, but when visitors browse through they're redirected to a dark corner of the Internet.

Common website sabotage a Joomla site is the injection of spam links going off to other websites.

These show up in many different forms:

• Entire articles added,
• Spam links only showing up when visitors arrive through the search results,
• Spam links added to your navigation or footer, spam links showing up in your Joomla search
• Spam links inserted into articles.

The links often connect to shady websites like pharmaceutical and imitation goods e-commerce sites (e.g. a website selling fake designer handbags.)