All things Shopify and commerce
And we thought shopify was SAFE.
We are currently facing an issue where our website gets redirected to an external webpage for new user. This webpage is usually the same website that seems like malware, and not a legitimate website.
Our store is www.netgearstore.in and www.netgearstore.sg
We have noticed this happening just a day ago, and have not made any theme edits or new app downloads in the past few months, so we're sure it's probably not related to a new dodgy app.
This redirect occurs for first-time visitors, likely linked to cookies, because if you refresh or re-visit our stores, the redirect doesn't occur. The redirect takes place again if you use incognito mode.
(Upon landing on the homepage, it will be redirected to gladiator.io. Sublinks do not seem to have this issue)
Would appreciate if any shopify expert or community member could help us resolve this. My understanding is that apps and app developers are vetted and checked for malicious code.
Saw it once and then it stopped, checked in incognito and on cell-connected phone. Did you do anything?
Seen similar problem once -- malicious code was in product description pulled from a different site.
Hi Tim,
We have managed to find the source of the issue.
Apparently, some apps that we have installed previously are not fully removed from the backend code itself. Its a filter app by "Searchit", which have been removed from the app store not long back.
Oh cool.
Thanks for sharing!
Hello I hope you get this message. We have a very similar issue. Can you please confirm how you resolved it? Upon entering our website www.rgdaretochange.shop from Google or directly is redirects to a completely unrelated website. Confirm please: Was it re-installing then uninstalling the apps again? Please confirm when you have a moment. Thank you.
I reviewed the site url you provided but was unable to replicate the issue you were experiencing. Were you able to get this resolved? If not, I would recommend reaching out to our live support for additional help with tracking down the issue.
To contact our live support please follow this link: Shopify Help Center - Contact Support, sign into your store account, search for your issue and use the contact support button at the bottom of the search results to see all our live support options.
Shay | Social Care @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Mark it as an Accepted Solution
- To learn more visit the Shopify Help Center or the Shopify Blog
Hi Shay,
I reach out because my online store has been infected with malware and half of the products redirect to some shady website (http://ww62.jsclou.in/). I have detected malicious HTML code on some of the product's descriptions and I eliminated them. Apparently after doing that the malicious links are no longer working. Do I have to do something else, beyond erasing all those code lines? And why does this happen? Isn't Shopify protected against this kind of malware?
Thank you!
Hi @DaniellaGMN
I am very sorry to hear about this! The only way theme code could be added to your store, malicious or not, is if an app or staff account on your store has been compromised.
Please reach out to our live support immediately to report this (if you have not already) to ensure that your account is secured and the injected code can be traced.
To access our live support, please follow this link: Shopify Help Center. Next, you will want to follow the on screen prompts to sign in, choose your topic and issue and at the bottom of the help articles provided will be all available live support options.
Steps to Secure Your Account
*To be completed by anyone with access to your store.*
Secure Your Logins
Payments and Finances
Orders
Settings
Shay | Social Care @ Shopify
- Was my reply helpful? Click Like to let me know!
- Was your question answered? Mark it as an Accepted Solution
- To learn more visit the Shopify Help Center or the Shopify Blog
This happened quite some time back, I might not remember clearly what are the steps to resolve the issue.
Re-installing the app may or may not work. The reason why I'm saying this is because you won't be able to tell if the issue occurred is due to your current app or app that you have tried before but un-installed (Some app does not remove their code fully from your store even after un-installing)
We have attempted several ways to get a fix to it.
Hope this helps.
Another "Defensive Tool" you can use to protect your site is to make and keep regular backups of your theme. ESPECIALLY after any major changes to your code, or addition of new apps. This has saved us a couple of times now when things went terribly bad on our website. We just pitched the corrupted theme, shut down any apps uploaded since the last update.. and then went live with an previously saved version.
2m ago Learn the essential skills to navigate the Shopify admin with confidence. T...
By Shopify Feb 12, 2025Learn how to expand your operations internationally with Shopify Academy’s learning path...
By Shopify Feb 4, 2025Hey Community, happy February! Looking back to January, we kicked off the year with 8....
By JasonH Feb 3, 2025