Thank you. I discovered the hacker got in through our WordPress blog site somehow (which has a sub folder in the root directory for our main website). I discovered this because when I tried to log in to the dashboard to update the blog site to 3.8, I couldn't get in because it said the password was incorrect. So I logged into the control panel for my sites host and went to the myPHPadmin to look at the wp_users file in the blog sites database and noticed the hackers email was entered in there along with a changed password. I edited the wp_users file to my email and was then able to reset the password and get in to update WordPress.
↧