In light of the recent COVID-19 pandemic - OPTASY would like to offer DRUPAL website support for any Health Care, Government, Education and Non-Profit Organization(s) with critical crisis communication websites or organizations directly providing relief. Stay Safe and Stay Well.

How to Fix a Hacked WordPress Site: A Step-by-Step Guide on Identifying and Removing Malware

How to Fix a Hacked WordPress Site: A Step-by-Step Guide on Identifying and Removing Malware

by Adriana Cacoveanu on Jun 19 2018

“Mysterious” pop-ups that you did not initiate, inexplicable auto-linking keywords, frequent freezing of your website... These are all but clear signs that your WordPress site has been hacked! Now what? Where should you look for the “infection”? Here's a step-by-step guide on how to fix a hacked WordPress site.

And it goes without saying that the very first step to take is to:

Keep calm!

Next, you'll need to figure out how precisely that malicious individual has found his/her way into your site. What security vulnerability has he detected and exploited?

Once you've determined how your WordPress website's got hacked, figuring out how to remove the malware is already a half-solved problem.

So, let's dig in before this hypothetical infection has spread out throughout your entire website:

 

Step 1: Identify the Hacked Files (and Change Your Password)

Remember what we've already agreed upon, that the very first step to take is precisely not to panic?

So, while keeping your cool, start your “investigations” by asking yourself 3 key questions  — this, of course, after you've already asked yourself “How to remove malware from my WordPress site?”:

 

  • Are you able to access your admin panel?
  • Is your site already marked as insecure (by Google)?
  • Is your site redirecting automatically to another website once you log yourself in?

     

At this point, I also strongly recommend that you changed your password, as well. And this before you jump to the next step of your investigation.

Note: remember to change it again after you've cleaned up your website, as well.

 

1.1. Give Your Site a Thorough Scan Using a Security Tool/Plugin

And I do think that it never gets redundant for me to stress out:

Turning on a powerful WordPress security plugin on your website is one of the best shields that you could activate around it.

In case of an emergency situation, like this one here, you'd simply enable it to scan your site remotely and track down malware locations and malicious payloads and, most of all:

A good security plugin would identify and alert you, in real-time, of all the changes made to your website.

Note: everyone knows it, yet most website owners stubbornly ignore the importance of keeping their loads of WordPress themes and plugins updated regularly. They just overlook the fact that out-of-date files are by far hackers' “top favorite” security vulnerabilities. 

 

1.2. Check Whether Your Core Files Have Been Compromised

And since they're by far the most valuable files on your site, it's only normal to check their integrity first things first:

 

  • wp-includes
  • root folders
  • wp-admin

     

Most of these core files should never ever be modified.

And there are 2 ways of checking them:

 

  1. you either use the diff command in your terminal
  2. or you check them manually, via SFTP

     

If they're unchanged and therefore clean, move on to the next step of this “how to fix a hacked WordPress site” guide:

 

1.3. Check the Integrity of the Recently Modified Files

It may also be that precisely the recently modified files on your WordPress site are the “corrupted” ones.

To know for sure, identify the files that have been recently modified.

And again, you have 2 options at hand for this type of “investigation”:

 

  1. the manual check
  2. running the right commands in your Linux terminal

     

For manually identifying these newly changed files that might have been hacked just go through these steps here:

 

  • log into your server (use the SSH terminal or an FTP client)
  • if it's SSH that you're using, then it's this command that will automatically list all the files that got modified the last 15 days: $ find ./ -type f -mtime -15
  • if it's SFTP that you're using, just scan through the last modified date column for all files on your server
  • … detect any files that recent changes have been made to

     

Now for tracking down these possibly “infected” recently modified files using the terminal, just follow these 2 simple steps:

 

  • run this command in your terminal: $ find /etc -type f -printf '%TY-%Tm-%Td %TT %p\n' | sort -r 
  • next, if you want to identify the directory files, enter this command: $ find /etc -printf '%TY-%Tm-%Td %TT %p\n' | sort -r 

     

Are there any unexplainable changes made to those files in the last 7-30 days?

 

1.4. Check the Diagnostic Pages 

A conveniently handy way to remove a virus from your WordPress website is to “track it down” using Google's or another website security authority's tool to give your site a deep scan with.

Has yours already been blacklisted by one of these authorities?

Then simply run the Google Transparency Report:

 

  • go to Safe Browsing Site Status website
  • enter your website's URL there
  • check both the Site Safety Details and the Testing Details sections 

     

It's a quick and easy way to collect valuable information about any suspicious downloads, redirects, and spams on your site, as well as priceless data about Google's recent scan that ended in malware being detected.

Note: another way of identifying malware that's within your reach is by using a free webmaster tool — Google Webmasters Central, Norton SafeWeb, Bing Webmaster Tools etc.

 

Step 2: How to Fix a Hacked WordPress Site: Removing the Detected Malware

After all your preliminary investigations, you should put together your battle plan for actually removing the identified hack from your WordPress site. And for restoring it to its pre-hack clean state, too, obviously.

For this, here are the most effective measures at hand for you to apply:

 

2.1. Is a Clean Backup Available? Use It to Compare Pre-Hack to Post-Hack Files

Is there any need for me to stress out that:

You should back up your website on a daily basis!

And the very situation that you're in now is by far one of the strongest reasons to do that:

“How to fix a hacked WordPress site” will get reduced to: “simply comparing a clean backup to the current hacked version of your site!"

Identify the files that have been modified and get them removed.

It goes without saying that you risk losing some of your files —  those added/updated after the last backup — but you do want a clean website now, don't you?

2.2. Remove the Identified Infected Files from Your Website

Once you've restored your WordPress backup, you can easily remove any suspicious plugin, theme or other types of file.

Note: do handle core files with utmost caution, though! Mind you don't accidentally overwrite your wp-content folder or your wp-config.php file.

When it comes to infected custom files, you could replace them with a clean recent backup or with fresh new copies.

“But how do I remove “malicious” code manually?” you might ask yourself.

Let me go briefly through all the key steps required:

 

  • log into your server (via SSH or SFTP)
  • back up your website
  • track down the recently modified files
  • replace any suspicious files with copies from the WordPress repository
  • use a text editor for opening up any custom files there and remove any suspicious code that you'll detect 
  • test your newly cleaned up website

     

Word of caution: manually removing a malware infection from your WordPress site does call for special safety measures. Never remove corrupted code without first backing everything up!

 

2.3. Remove All Malware Infections from Your Database Tables, as Well 

Now, you do agree that a “how to fix a hacked WordPress site” tutorial couldn't possibly skip the step where database tables get cleaned up of any malware infection.

Here's how you do it:

 

  • connect to your database using your database admin panel
  • create a backup of your database
  • give it a deep scan looking for any suspicious content 
  • if detected, open the table containing that specific link or spammy keywords
  • manually remove that infected piece of content
  • give your website a “post database clean up” test
  • remove any tools that you might have used specifically for this operation —  Adminer or maybe Search-Replace-DB

     

2.4. Check All The User Permissions: Look for New, Unfamiliar User Accounts

My advice to you, when it comes to user accounts, to user roles and permissions on your WordPress site is to:

Keep just one single admin user and stick to the essential user roles (and granted permissions):

  • author
  • editor
  • contributor 
  • etc.

     

This is one of the most effective prevention measures that you could take so you don't end up asking yourself How to clean up a hacked WordPress site?”

Now, coming back to our investigation here, here's how you remove all the unfamiliar WordPress user accounts from your website:

 

  • first, back up both your site and your database
  • log into your admin panel and click the “Users” tab
  • track down any unfamiliar new user accounts there, hover over them and delete them

     

Note: another wise thing to do is to re-check each user's roles and permissions. If you feel like updating them, simply use the users' role editor plugin.

 

2.5. Detect and “Close” all the Backdoors

And you want to treat this aspect with maximum seriousness. Otherwise, following each and every step indicated to you in this “how to fix a hacked WordPress site” tutorial becomes... pointless.

For the attackers would always have this “secret passage” to infiltrate themselves into your website over and over again.

“But what are backdoors more precisely?” you might ask yourself.

They're files similar to your site's core files — wp-config.php and key directories such as /uploads, /themes, /plugins —  yet strategically placed in the wrong directories. 

Here are some PHP functions that you could recognize them by:

 

  • str_rot13
  • assert
  • base64
  • move_uploaded_file
  • eval
  • system
  • stripslashes
  • gzuncompress

     

Word of caution: keep in mind that there are plugins on your WordPress website that could be legitimately be using these PHP functions; therefore, make sure you test all those "apparently suspicious changes" before rushing to remove the so-called "malicious" functions. Otherwise, by removing benign functions, you might just break your website.

 

2.6. Request a Review of Your Site, to Have all Malware Warnings Removed

Now, once you've repaired all the damage caused on your Wordpress site, it's only but logical to... let the blacklisting authorities know that your site's clean now.

For this, you can just request a review of your recovered website.

 

2.7. Change Your WordPress Salt Keys 

The very last step to take in this “How to fix a hacked WordPress site” process is to change the security keys from your wp-config.php file:

This way, even if a potential attacker stole your password, he would get automatically auto-logged out once you've changed your WordPress salt keys.

Next, you can just change your password, as well as the ones of other users on your site.

 

Or, Just Cut All These Steps Down to a Single One: Preventive Maintenance

Which means adopting a WordPress maintenance and support plan tailored just for you and your specific security feature needs.

This way, not only that you'd save the time (and spare your nerves) that you'd otherwise invest in carrying out all the steps included in a tedious “how to fix a hacked WordPress site” process, but:

From running regular updates to on-going maintenance of your website's core components to regular security audits, you wouldn't need to... move a single finger. Our WordPress maintenance and support team would handle it for you.

“Prevention is better than cure” is so much more than just a saying...

Development

We do Web development

Go to our Web development page!

Visit page!

Recommended Stories

What Are the Advantages of Using Flutter? 10 Good Reasons to Choose It for Your Next App Project
Why would you want to build your next app with Flutter? Instead of... React Native? Or maybe Swift? What are the key advantages of using Flutter? Here are the best reasons why you'd want to give it a go for your next app project: But What Is Flutter Used For Anyway? ... for building native-looking Android and iOS apps using a single codebase. "But how is it any different from other cross-platform frameworks?" you might ask yourself. Widgets... That's right, they're Flutter's equivalent of the React Native components. Or of the native UI components, if you wish. You get to put together a fully customed UI for your app by choosing, then mixing and matching several ready-made widgets. They look either iOS-native or Android-native and... you can even create your own widgets, from the ground up. A widget could stand for a menu or a button, a slider, text, toggle... Reason #1: You Get to Share Both the UI Code and the UI Itself Between Multiple Platforms In short: you can make the most of having a common UI and business logic for all your target platforms. And this is where Flutter manages to stand out from the crowd of cross-platform frameworks: It doesn't just have a unique codebase for all platforms: it also shares both the UI and the UI code globally, across iOS and Android. In other words, one language, one UI, same business logic translates into UI consistency across platforms. Reason #2: You Reduce Maintenance Costs, One of the Main Advantages of Using Flutter       And that's pretty obvious since you only have one codebase to maintain.                Reason #3: You Save Time and Money (And Get to Be More Productive) Just imagine: You will use the same codebase for both the Android and iOS versions of your app. So, this can only bubble up to your... overall costs.  You: build one app and run it on multiple platforms (saving time and resources) get to build more apps... faster reach a wider audience with a single investment  Reason #4: You Get to Inject Native-Level of Performance into Your App "Why choose Flutter in 2020?" Because it powers your app with close-to-native performance. With Dart (Flutter's programming language) compiling everything into native code, and the need of accessing OEM widgets, out of the equation, you get better app startup times. Reason #5: You'll Develop Your App Much Faster The Flutter development experience is one of the best. And the main reason why developing a Flutter app is so much simpler and, therefore, faster. Here's why: The "hot reload" feature allows your developers to view the changes made in code on simulators, hardware, and emulators in... real-time. With no need to restart. This speeds up processes like adding new features, building your app's UI, and even testing it. One of the main advantages of using Flutter... And, where do you add that you have a huge collection of ready-to-use-widgets at hand, which speeds up your app's development process. Reason #6: You Speed Up Time to Market for Your New App Since you don't need to develop separate apps anymore, one for iOS and one for Android, you get to launch your app much faster. And to reduce your time to market. Reason #7: You Get to Fully Customize the UI Another one of the strongest Flutter app development advantages is the huge customization potential. You get to customize your app's UI in the slightest detail. And here are 2 ways that you can do that: browse through its impressive collection of prepackaged, core layout widgets, pick the ones that fit your needs, customize them to your liking and... create a fully customed UI go for some of the pre-built widgets that mimic the behavior of the iOS and the Android design languages: Cupertino and Material You're free to customize every aspect of your UI, no matter how complex, thanks to Flutter's ready-to-use widgets.   ... and to save lots of time while doing it. Reason #8: You Spend Less Time Testing Your Application Just think about it: The widgets making up your UI are part of the app itself and not part of the iOS or the Android platform. So, you're less likely to face incompatibility issues. Which translates into less time invested in testing your app... Reason #9: You Can Learn It in Just About... 2 Weeks  You/your development team will spend less time learning it. And this is one of the key advantages of using Flutter. Here's why: The UI in Flutter is code, basically. So, you can just put logic on the UI code to create, use, and... reuse components. Reason #10: You Get to Build a UI-Heavy App in No Time "Is Flutter a good choice?" It is if it's a UI-heavy application that you need to build. And you need it built really fast. The END! Now, whether these 10 reasons are strong enough for you to give Flutter a go or... not quite, one thing's for sure: You need a fast, great-looking app, that should incorporate all those powerful features on your wishlist. Nothing easier. Just drop us a line with that wishlist of yours and let's get it built!   Image by RSunset from Pixabay   ... Read more
Silviu Serdaru / Jul 31'2020
What Is the Best eCommerce Platform for Small Business in 2020? Your 6 Best Options
You need to launch your small eCommerce business fast and without breaking the bank... if possible. So, what's the best eCommerce platform for small business in 2020? And, most importantly: Which is the best eCommerce option for your store? The one that meets your specific needs? For, let me guess: your wishlist doesn't end there. You also want it to: give you enough customization freedom so you can personalize every aspect of your website    be scalable, to accommodate all those big plans that you have for your store be easy to use both for you, as you build your storefront, and your customers provide you with robust sales features (and advanced SEO tools) be fast have great software integration; you want to be able to add all the extra apps and tools that you might need quick and easy Now, let's see which of these 6 best eCommerce platforms for startups ticks most of the boxes on your list: 1. Squarespace What makes Squarespace one of the first solutions to evaluate first when choosing the best eCommerce solution for your small store? It gives you total creative control over how your website will look. Squarespace stands out from this list with its sleek, modern templates. Templates that are flexible enough to enable you to DIY your online store exactly how you want it to look. With no coding skills or additional plugins needed. Key Benefits you get unlimited creative control you get an entire collection of beautifully-designed templates, as well as tons of flexibility to further customize them to your liking you get to sell your products on Instagram, as well Main Drawbacks you're not free to add any extra sales features to those that you get out of the box; there's no app market you're quite limited when it comes to payment options; there are 3 options only: Apple Pay, PayPal, and Stripe its multi-channel selling offering is limited to Instagram its sales features aren't as powerful as those of other eCommerce solutions for small businesses You'd Choose to Build Your Website with Squarespace If... it's a visually-arresting storefront that you want to create you want total creative control over your website's design 2. Best Platform for Small Business in 2020: Wix Wix is any small-scale seller's (with little to no tech knowledge) dream come true. You get: an easy to use drag and drop system to put together your store (just drag text boxes and images and position them anywhere you want on the page) tons of creative freedom over your website's looks: make your website look exactly like the one in your head the chance to build your store with... zero costs (pay when you start to actually sell products/services on your newly built website) What more could you want from a solution of eCommerce for small retailers! Key Benefits  you can build your first online store in no time: you just drag and drop elements on the page you're free to design it exactly how you want it to look you get to add product videos, too Main Drawbacks you can't sell your products across multiple social channels you get a less robust inventory, compared to other platforms (i.e. you can't bulk upload products) Overall, the eCommerce tools that you get aren't as powerful as those of other platforms (i.e. Shopify).  You'd Choose to Build Your Website with Wix If... you're looking for an affordable eCommerce solution you want it to be super easy to use you want to be able to personalize every little aspect of your store  3. Weebly  Image by Hannes Edinger from Pixabay If you're looking for a 100% beginner-friendly and budget-friendly solution, Weebly is the one. You get to: sell for free (and upgrade later to one of its eCommerce plans) set up your small-scale eCommerce website with no tech skills Key Benefits  you get to build your online store on a budget: it doesn't get any cheaper than Weebly you can get your website up and running in no time: Weebly's the most beginner-friendly eCommerce solution you'll find Main Drawbacks you're not free to customize your checkout page (a crucial page on your eCommerce website) it doesn't provide you with multichannel selling features You'd Choose to Build Your Website with Weebly If... you have a really small inventory, so you don't really need any advanced selling features 4. BigCommerce It's one of the best eCommerce options for small businesses with... big ambitions. Why? Because: you get lots of powerful eCommerce features from the get-go (robust SEO tools and selling features); you don't need to look for (and pay for) any extra apps if you need to incorporate specific selling features into your website it is the most scalable eCommerce platform for a small business Key Benefits  you get to grow your small business... fast you get to expand your store's reach and keep your costs within budget by selling across various platforms (BigCommerce comes with lots of multi-channel integrations) Main Drawbacks its advanced tools come at a cost: a steep learning curve  it's not as beginner-friendly as the other eCommerce platforms on this list: don't expect to get your BigCommerce store live in... a matter of hours if you don't plan to grow your business any time soon, you'll find yourself paying for powerful features that you just... don't need You'd Choose to Build Your Website with BigCommerce If... you have big plans for your small eCommerce business and you want to make them a reality... fast 5. Square Online Store  Image by mohamed Hassan from Pixabay  What makes it the perfect candidate for the title of “the best platform for small business in 2020”? it's affordable it's easy to use, for any beginner trying to launch his/her first online store on his own it taps into AI to help you make the best choices when building your site  Key Benefits  you get to build your website and start selling with... zero costs: Square Online Store does offer you a free plan  the AI tech that it uses makes it so much easier (and faster) for you to build your store (i.e. you save valuable time when loading your products since it points out what categories they fit into) it's the “best value for money” type of eCommerce option for small-sized businesses  Main Drawbacks you're not 100% free to customize your website you'll find its selling features to be quite... basic if you're planning to grow your small business You'd Choose to Build Your Website with Square Online Store If... you want to be able to combine your offline sales with your online selling strategy you're on a shoestring budget and you have zero tech skills, so you're looking for a really affordable and easy to use eCommerce platform to build your small online store... fast 6. Shopify New to eCommerce and you're looking for a turnkey solution to launch your business fast? Shopify could be the best choice for you: it's easy to use and code-free it ships with 50+ different store themes (the Shopify themes are some of the best-looking ones in the marketplace) you have lots and lots of apps to choose from to incorporate precisely the functionality that you need into your store The whole process of building your eCommerce website with Shopify could get summed up to 3 simple steps: you select the store theme you add on your content you import your products' CSVs There! You're now ready to launch your Shopify store. Key Benefits  you get a huge app market and the most advanced sales-specific features on the market you get multichannel selling options (Amazon and eBay integrations here included) you can sync your inventories if you're already selling on another platform: centralize your inventory management you get a robust inventory system (i.e. you get alerted when one of your products is out of stock) you get built-in dropshipping tools, essential when you run a small business on a budget and you don't have storage for your products yet Main Drawbacks  it's not exactly the most budget-friendly eCommerce platform for a small retailer expect to be charged transaction fees on your sales, unless you use its in-house payment gateway: Shopify Payments You'd Choose to Build Your Website with Shopify If... you're committed to building a successful eCommerce business (you're not selling just a couple of products) you want to create a solid foundation for your store: Shopify provides you with powerful tools to build and manage your store and a big app store to browse through and grow your business The END! The best eCommerce platform for small business in 2020 is on this list, but the real question bugging you is: “Which one's the perfect choice for my own store?” It really depends on what you value most:  a low price? powerful sales tools and features? creative freedom to customize your product listings, your checkout page, your...? If what you need is a visually-appealing, easy to manage online store, equipped with advanced eCommerce features that best fit your needs, then what you need is Shopify. Now, if the idea of: digging through a huge app store browsing through a big collection of store themes to pick the one that suits your niche and store's personality setting everything up (optimizing it to rank high in search results here included) ... seems too time-consuming for you, we're here to help. Just drop us a line and let's get you that Shopify store that engages and drives sells.   Image by Darwin Laganzon from Pixabay   ... Read more
Adriana Cacoveanu / Jul 29'2020
The SEO Shopify Checklist: How to Get Your Store to Rank Higher Fast in 10 Simple Steps (Part 2)
See? We are a team of our word. As promised in Part 1, we're back with 5 more steps to add to your SEO Shopify checklist. And to boost the ranking of your new Shopify store (and its traffic, and the sales, and... all the "good stuff" that comes from an effective SEO strategy). So, let's dive right in. Here are the other 5 simple, yet effective improvements that you can make to your eCommerce website: Step 6: Optimize Your Product Pages "How does a Shopify store rank on Google?" It "bets" on a mix of unique product descriptions and on-product-page SEO best practices. "Often times product pages don't have the content that they need to perform well in the SERPs" (MOZ.com) With so many eCommerce brands still striving to get the most out of these 2 totally ineffective tactics: using the same description on multiple product pages across their websites displaying the manufacturers' descriptions on their product pages ... you stand high chances to get your own product pages to rank higher in the SERPS. Now, let's get specific.  6.1. 4 Best Practices to Increase Engagement on Your Product Pages add unique content to each page (don't be that Shopify store owner who uses the same content across all his/her product pages!) write your own product descriptions (and make sure to create one for each product in your inventory; focus on their best features and benefits) add product reviews and highlight ratings add high-quality images and videos of your products link to related products Source: spiegel.medill.northwestern.edu   Tip! One of the best SEO Shopify apps that you could use at this point is Product Reviews. It'll add SEO-friendly scores to all your product pages. 6.2. 3 Best Practices to Keyword Optimize Your Product Pages include your target keywords in the title tags, product descriptions, and meta descriptions remember to add it to your ALT text for images, as well make sure your keywords fit naturally into the text And, again, I can't stress enough the importance of original and unique product descriptions! Step 7: Add a Blog, Another Critical Step On Your SEO Shopify Checklist "If you’re seeing that Google is ranking more blog/article types of content for the keywords mapped to your Shopify store, your best bet is to go out and create that content yourself." (MOZ.com) Now, let's say that, as you're building the SEO for your Shopify store, you're trying to rank for quite a lot of informational keywords ("How to...", "What's the best...", etc.). You've already mapped them all to your store (i.e. to your product and your category pages) and... nothing. Your Shopify store's still on... page 10 in the searches for those keywords. But what about those stores that do rank high for the same keywords with informational intent? Is it their product/category pages that Google ranks? Or rather post from their blogs, that include those keywords? Mystery solved. If you want to have your store rank high for keywords with informational intent you need to add a blog to your Shopify site. It's there that you can write informational (and epic) content around those specific keywords. "Google is starting to prefer to rank more informational content above transactional. " (MOZ.com)  7.1. 4 Reasons Why You'd Want to Start Blogging on Your Shopify Store    face it: only a ridiculously small percent of your website's visitors access it with a clear intention to buy. To increase chances to turn them from visitors to customers, you need to... educate them; to provide them with informational content for each stage in the buyer's journey once you write high-quality content on your blog you can send some of that authority to your product and category pages (which, otherwise, are so hard to link to); internal linking still is on of the best SEO tips for Shopify that you should make the most of blog posts make great tools for "pitching" your products (just make sure you target the right keywords) a blog is a perfect place on your website to add informational content that Google ranks high   "But what should I blog about?" Glad you asked. Here are 3 simple ways that you can come up with some killer blog post topics: a. Ask yourself how your customers could get more value out of your product. For instance, you might be selling... hand blenders. Then, you could come up with recipes on "how to make creamy tomato soup in just 3 minutes" using a particular feature of your blenders. b. When you do your keyword research, make a list of all the user questions around those keywords. Then, go ahead and "exploit" them: write blog posts around the questions that your future customers have. c. Or, you can... brainstorm those questions. Ask yourself what inquiries and dilemmas related to your products your customers might be dealing with. For instance, you could be selling clothes made of a... revolutionary type of linen. Your potential customers could be wondering: "What makes it so revolutionary?". Or "Why is linen so expensive?" or "What's the difference between cotton and linen?" Step 8: Find and Fix all the Duplicate Content Issues Removing all duplicates is one of the crucial steps to take for improving the SEO of your Shopify store. It's also one of those issues common to Shopify stores in particular: 2 versions of your domain (with the same content) get indexed: the myshopify one and the custom domain one. Tip! When you add your custom domain to Shopify, make sure to check that all the traffic gets automatically redirected to your primary domain. How? Just go to Online Store > Domains and, if the message that you get there is “Traffic from your domains is not being redirected to this primary domain.”, click "Enable redirection". If it says “Traffic from all your domains redirects to this primary domain", then you're safe. But it's always best to check first. This way, you avoid the scenario where you're making it harder than necessary for Google to rank your Shopify store. For it won't know which of the 2 indexed versions is the "official" one. And speaking of the "duplicate content" danger that's greater in the case of Shopify websites, here are 2 ways that this eCommerce platform duplicates content. 8.1. It duplicates collection pages via pagination Meaning that it duplicates the first product category page in a series. You'll see “?page=1” included in the URL to the first page in that series.  And this URL is highly likely to have the same content as the first, non-parameterized URL. So, when working on the SEO for your Shopify store, make sure to identify and to remove all the duplicate paginated URLs. 8.2. It duplicates product pages  You'll have your product pages rendering at 2 different URL paths: the canonical one: /products/ the default, non-canonical one: /collections/.*/products/ Basically, Shopify creates several links for each category that a product is in. How to fix that? You can address this issue right in your theme's .liquid files. Just follow the step-by-step guide there to get it fixed. Step 9: Use an Alternative to Robots.txt File to Control Google's Crawl  Why would you want to add this point to your SEO Shopify checklist? Because in Shopify you cannot adjust the robots.txt file.  And, since you don't want Google to crawl the content on your website altogether, you'll need to look for alternatives. You could, for instance, consider canonical or "no follow" tags. Step 10: Build Links to Your Shopify Store It's sill is one of the most challenging parts when doing SEO for Shopify in 2020. But it's also one of the most powerful tactics, that can make or break an effective SEO strategy. Still, no need to get discouraged. There are a few simple and effective ways to get quality, relevant links to your Shopify store and boost its authority:   guest blog on relevant websites (remember to add a link to your online store in your blog post) reach out to those websites that have already mentioned your brand (your products, your brand's name, etc.), but "overlooked" to include a link to your website, as well form partnerships with publishers or other eCommerce businesses in your industry  find out who's linking to your competitors' stores and reach out to them   Our Recommendation for You Is... ... to balance out your SEO efforts and your efforts to provide the best user experience. Your mail goal, as a Shopify store owner, should go beyond that of achieving a higher ranking: More sales is your ultimate goal. And for that, delivering the best user experience (a fast loading site, helpful image descriptions, useful content, etc.) is critical. So, in addition to these 10 points on your SEO Shopify checklist, be sure to add another one: Provide users with what they're looking for on your website. And make it easy for them to find it. The better their experience will be, the higher your chances to have your site pushed up in the rankings. Now, if you'd want to have your store bumped up in the search results, but without having to: get tangled up in link building tactics be on the lookout for duplicate content issues come up with a unique and keyword-optimized description for every single product in your inventory ... just shift the burden to us. Drop us a line and let's start building out the SEO strategy that'll set your Shopify store up for success! Image by mohamed Hassan from Pixabay  ... Read more
Adriana Cacoveanu / Jul 17'2020