For around six months, the website has been subjected to hacking attempts with harmful codes inserted into all folders of the site, which runs on CMS - Joomla 2.5. Eventually, other sites hosted on the same server and running Joomla 3 started getting infected too.

Despite trying to change passwords and cleaning files, the website was once again hacked within a week. The malicious code in the site even sent out phishing emails and created fraudulent pages.

In light of these issues, the question remains: what measures can be taken to eliminate the malevolent codes and safeguard against future attacks?

Many security issues related to Joomla (as well as other similar CMS) stem from modules and templates with vulnerabilities that can be exploited by hackers. In some cases, these vulnerabilities may have been deliberately introduced into paid modules that have been shared for free.

When dealing with such modules, it is best to remove them altogether. Additionally, it is important to examine server logs carefully to determine the root cause of any infections. Another possible solution is to install a web antivirus such as santivi.com, which may offer some protection.

1. Refactor the codebase, avoiding reliance on popular CMS platforms like Joomla, Drupal, and WordPress, as well as other commonly touted examples of "elegant" coding.

2. Perform a comprehensive code audit (which can be both labor-intensive and pricey), with bookmarks scattered throughout the codebase.

3. Reconsider your choice of hosting provider.

It is advisable to avoid using Joomla, as it may pose a security risk. In order to ensure the safety of your computer, it's important to remove all malicious files and suspicious add-ons from your system.
Additionally, it's recommended to remain vigilant about security measures such as avoiding saving passwords in order to prevent any potential intrusions.

In terms of additional information, it's important to note that taking proactive measures to ensure computer security can be very beneficial in preventing any potential problems further down the line. Staying informed and up-to-date on the latest developments in cybersecurity is also important in order to make informed decisions about what programs and software to use.

To eliminate the malicious code and protect against future attacks on your website, here are some measures you can take:

1. Update to the latest version of Joomla: Running an outdated version of Joomla leaves your website vulnerable to known security vulnerabilities. Upgrading to the latest stable version ensures you have the latest security patches.

2. Remove any compromised extensions or plugins: Malicious code can often be injected through vulnerable extensions or plugins. Disable and remove any unnecessary or outdated extensions, and keep the remaining ones updated to the latest versions.

3. Scan and remove malicious files: Utilize security tools or plugins specifically designed for Joomla to scan your website for malware and malicious files. Once identified, delete them immediately.

4. Strengthen password security: Make sure to use strong, unique passwords for your Joomla administrator accounts and FTP/SFTP access. Avoid using common passwords or reusing passwords across multiple sites. Regularly change passwords to reduce the risk of unauthorized access.

5. Implement a web application firewall (WAF): A WAF adds an additional layer of protection by filtering malicious traffic and blocking common attack vectors. Consider using a reputable WAF service or installing a Joomla-specific WAF extension.

6. Enable two-factor authentication (2FA): Enabling 2FA adds an extra layer of security to your Joomla login process. This typically requires users to provide a second form of verification, such as a temporary code sent to their mobile device, in addition to their password.

7. Regularly backup your website: Create frequent backups of your website files and database. In the event of an attack, having recent backups allows you to restore your site to a previous, clean state.

8. Monitor and update regularly: Stay updated with the latest security news related to Joomla and implement recommended security measures promptly. Regularly check for software updates for your server, Joomla, extensions, and plugins.

9. Consult a security professional: If the hacking attempts persist or you are unsure of how to proceed, consider consulting a security professional who specializes in Joomla security. They can perform a comprehensive security audit and recommend further steps to protect your website.

10. Implement a secure hosting environment: Choose a reputable hosting provider that prioritizes security and offers measures like regular server updates, firewalls, intrusion detection systems, and malware scanning.

11. Use strong security extensions: Install reputable security extensions from trusted sources to enhance the security of your Joomla website. These extensions can provide features like scanning for vulnerabilities, monitoring file changes, and blocking suspicious activities.

12. Harden file and directory permissions: Set appropriate file and directory permissions to limit access to certain files, directories, and configuration files. Restricting write permissions can prevent malicious code from being injected or modifying important files.

13. Enable SSL encryption (HTTPS): Implement an SSL certificate on your website to encrypt data transmitted between the server and users' browsers. This helps protect sensitive information and prevents man-in-the-middle attacks.

14. Regularly monitor website logs: Keep an eye on your website's access and error logs to identify any suspicious activity or unauthorized access attempts. Analyzing logs can help detect potential security breaches and take necessary action in a timely manner.

15. Educate website administrators and users: Train your website administrators and users about best practices for maintaining website security. This includes educating them on how to create strong passwords, avoid phishing scams, and stay updated with the latest security measures.

16. Implement IP blocking and rate limiting: Consider implementing IP blocking or rate limiting to block repeated failed login attempts or suspicious activities originating from specific IP addresses. This can help thwart brute force attacks and reduce the risk of unauthorized access.

17. Regularly test and audit your website: Perform regular security audits and vulnerability assessments on your website to identify any potential security weaknesses. This can be done using specialized tools or by hiring security professionals to test your website's security posture.