Hi! I have been using the malcare plugin to give me an alert if a site gets hacked despite the precautions I have done with bulletproof. (and some have, maybe from previous issues with the sites, but in a shared server environment that can spread quickly) The most frustrating thing is that they are giving me false positives for some BPS files (and this only happens on a very few sites with bulletproof, maybe 5-7). One of my accounts with them is a Pro one so I ran a site cleanup on a “hacked” site and they removed the two files shown below. Do you think I could contact them and ask for some kind of whitelisting.? I am a bit frustrated, Any other ideas on how I could determine if a site does get hacked besides malcare?
I guess I could delete those files temporarily then run malcare and see if it comes up clean then just ignore the notifications for those sites. I’m just not understanding why it only happens on a few sites with BPS.
Thanks!!
wp-admin/.htaccess
wp-content/bps-backup/autorestore/wp-admin/wpadmin.htaccess