Has your PrestaShop been hacked?
Your site has been compromised and you're not sure what to do? PrestaSecure offers an emergency service to disinfect your PrestaShop stores.
Is your store showing these symptoms?
Redirects to unknown sites
Your visitors are redirected to phishing pages, ads or spam. This often happens only from search engine traffic.
"Dangerous site" warning in Google
A red screen blocks access to your site. Google detected malicious content and blacklisted your domain via Safe Browsing.
Unknown PHP files on the server
Files you didn't upload appear in /upload, /img, /modules or /cache. These are typically backdoors.
Abnormal site slowdowns
Malware consumes server resources to send spam, mine cryptocurrency or launch DDoS attacks.
Spam sent from your server
Your hosting provider reports mass email sending. Hackers use your server as a relay, risking hosting suspension.
Unknown admin accounts or modules
Admin accounts were created without your knowledge, or modules you didn't install appear in your back-office.
How does it work?
Contact us
Describe your situation via our contact form. We respond within 2 hours for emergencies.
Diagnosis
Our team analyzes your site to identify infected files, backdoors and exploited vulnerabilities.
Cleanup
Removal of malicious code, restoration of altered files and patching of security vulnerabilities.
Protection
Installation of the PrestaSecure module to protect your store against future attacks.
What's included
Full scan
Complete analysis of your PrestaShop installation: core, modules, themes and uploaded files.
Malware removal
Cleaning of all infected files, removal of backdoors, webshells and injected code.
Detailed report
A complete report listing all treated files, identified vulnerabilities and recommendations.
Fast response
Handled within 2 hours. Response within minutes during business hours (6 AM to midnight).
Why was your site hacked?
Vulnerable third-party modules
The number one cause of PrestaShop hacks. A single module with a vulnerability (SQL injection, insecure upload) is enough to compromise the entire site.
Outdated PrestaShop version
Older versions contain publicly documented vulnerabilities. Automated scanners exploit them at scale.
Weak or stolen credentials
Too-simple admin password, unsecured FTP access or phished credentials. Back-office access gives total control.
Misconfigured hosting
Overly permissive permissions (777), outdated PHP, no server firewall. Poor hosting security makes exploitation easier.
Consequences of an untreated infection
95% traffic loss
A Google-blacklisted site loses nearly all organic traffic. Every day without action = lost revenue.
Credit card data theft
Skimmers intercept your customers' card numbers in real time. Your GDPR liability is engaged.
Hosting suspension
Hosting providers suspend sites that send spam or consume excessive resources. Your store becomes inaccessible.
Destroyed reputation
Customers who see "Dangerous site" don't come back. Trust, once lost, is very hard to rebuild.
Two options to help you
One-time cleaning
Single intervention via our service mon-site-bug.fr. Ideal if you need a quick cleanup without a subscription.
Request a quoteSerenity plan
Antivirus + firewall + unlimited cleaning. Complete security insurance for your store.
Subscribe to SerenityFrequently asked questions
-
How much does cleaning cost?
One-time cleaning starts at EUR 345 excl. tax via our service mon-site-bug.fr. The Serenity plan (EUR 690/year) includes unlimited cleaning plus antivirus and firewall.
-
How long does the intervention take?
Most cleanups are completed in 2 to 6 hours. Complex infections can take up to 24 hours.
-
Will my site be hacked again after cleaning?
We patch the exploited vulnerabilities and install the PrestaSecure module. With the Serenity plan, if your site is re-infected, we intervene again at no extra cost.
-
My site is blacklisted by Google. Will cleaning fix it?
Yes. After cleaning, we guide you through requesting a review via Google Search Console. Removal typically takes 24 to 72 hours.
-
What access do you need?
We need FTP or SSH access to your server and PrestaShop back-office access. You can change passwords after the intervention.
-
Do you work on all PrestaShop versions?
Yes. We work on PrestaShop 1.6, 1.7, 8 and 9, including installations with third-party modules or custom themes.
PrestaShop hacked: understand, respond and protect
PrestaShop stores are prime targets for cybercriminals. Backdoor injection in modules, credit card theft via skimmers, mass spam from the server — the consequences of a hack go far beyond a simple technical inconvenience. They directly impact your revenue, reputation and customer trust.
The PrestaSecure cleaning service is performed by experts specialized in the PrestaShop ecosystem. We don't just remove infected files: we identify the attack origin, patch vulnerabilities and install lasting protection to prevent re-infection.
Whether you choose a one-time cleanup or the Serenity plan with ongoing protection, you get fast intervention (within 2 hours) and a detailed report. Don't wait: every day of infection makes the damage worse.
Don't face a hack alone.
Our team specializes in PrestaShop security. Contact us for a fast intervention.