Hello,
The blog component of our site (blog.abc.com) was run as a wordpress app in Azure, but eventually discontinued and the app deleted in azure portal. Now, maybe 6 months later, received a Google search console message that the site has been hacked.
Visiting blog.abc.com goes to a default azure page "your app service is up and running. Time to take the next step and deploy your code." But somehow the hacker has inserted pages like blog.abc.com/1.html
Since I deleted the app I can't access it in azure portal. The old ftp credentials I had don't work so I can't even look at what's been uploaded.
Any ideas on what to do appreciated.
Thanks,
James