Has anyone else received these ransom emails claiming their Webflow websites have been hacked and demanding payment in bitcoins to prevent further damage?

TL;DR

Ignore ransom emails as scams with no real breach; do not respond or pay.
Verify Webflow account activity, audit custom code for vulnerabilities, change passwords, and enable 2FA for added security.

Ransom emails claiming your Webflow site has been hacked are often part of a widespread phishing or extortion scam, not a sign of an actual security breach.

1. Understand the Nature of These Emails

These emails typically claim that a hacker has gained access to your website or private data and demand a ransom in cryptocurrency (usually Bitcoin).
In most cases, they are generic scams sent to hundreds or thousands of addresses using scraped email lists.
There's often no real evidence of a breach — just threats using fear tactics.

2. Verify Webflow Site Security

Webflow-hosted sites are secured by Webflow’s infrastructure, with HTTPS, sandboxed publishing, and strict platform controls.
There have been no widespread reports of Webflow platform-level compromises causing this type of ransom threat.
To double-check, log in to Webflow and:
Check your login history (under Account Settings > Billing > Login History).
Review Editor and Collaborator access under Project Settings > Members.

3. Review Your Custom Code and Integrations

If you have embedded third-party scripts or use external CMS/JS services, inspect them for vulnerabilities.
Disable or remove any unaudited or unnecessary custom code in the Page Settings or Site Settings > Custom Code area.

4. Strengthen Your Account Security

Enable Two-Factor Authentication (2FA) on your Webflow account.
Change your Webflow and connected email passwords if you suspect your credentials were leaked elsewhere.
Use a tool like Have I Been Pwned to check if your email has been involved in past data breaches.

5. Do Not Respond or Pay

Do not engage, respond, or send payment — paying does not guarantee the threat will stop and may mark you as a future target.
Mark the email as spam or phishing in your email client.

Summary

These ransom emails are almost always scams with no actual access to your Webflow site. Verify your Webflow account security, audit custom code, and use 2FA, but there's no need to panic or pay.

Webflow Resources

Webflow templates

Webflow inspiration

Rate this answer

Other Webflow Questions

How do I truncate names and bios in Webflow CMS to maintain grid size without wrapping or shrinking the text?

How can I create a Webflow navbar with a transparent background that changes to black after scrolling, similar to a specific website? Additionally, how can I achieve the same background video effect?

Is there a way to work around product variants in Webflow until it is officially released?

How can I make the block in Webflow containing hidden text grow to the same height as the text itself when the button is clicked, without pushing other elements?

How can I create a Webflow Buy Now button that bypasses the cart and takes the user directly to the checkout for a better UX for merchants with small inventories or binary product choices?

Why did the checkout button disappear after connecting PayPal and enabling checkout on my Webflow website?

How can I recreate a webpage layout in Webflow that includes a 3 x 3 grid of images with the original aspect ratio, along with a column on the right containing links and contact information?

How can I implement "Invisible reCAPTCHA" on all forms in my Webflow site? Is this feature supported? Where can I find more information about it? Thank you in advance for your help!

How can I get Vimeo videos to autoplay within a Rich Text element of a CMS item in Webflow? I've tried adding a Video element with the URL and also adding embedded code, but it's not working. Any suggestions? Thank you!

Is there a tutorial or simple guide on embedding a PDF into a Webflow page? I've checked out the Webflow announcement about uploading PDFs, PPTs, DOCs, CSVs, and more, but I'm still having trouble figuring it out. Can someone assist me?

How can I resolve the recurring 500 error when reloading one of my two websites on Webflow while the other one does not encounter this issue?

Is it possible to have visitors add filters to the FAQ page on my Webflow website using an input field or something similar, while still allowing for a general site search in the future?

How can I remove the underline in paragraph text within a link block on my Webflow site?

How can I duplicate a page in Webflow when I receive a maximum number of pages error message for the template I am using?

How can I add RSS feed to my Webflow site?

Can Webflow be used to call a CSS or JS file stored on a different server, instead of hosting them on GitHub?

How can I use the Finsweet script to manage two different sliders on my Webflow page, each feeding content from different collections?

How can I prevent a full-screen slider in Webflow from pausing on hover? Additionally, I would like to link two sliders to one control or navigation. Can anyone with JavaScript knowledge help me achieve this?

How can I change the language of publication dates in Webflow CMS collection from English to Portuguese?

How can I dynamically redirect to a CMS created after form submission in Webflow?

How can I disable right-clicking on images to prevent downloading on my Webflow portfolio website?

In Webflow, how can I hide specific elements in the footer (such as "Ramin Khaze The Difference" and "Schedule showing") when the URL contains a certain parameter, such as "?mls"? I am a beginner in coding and would appreciate any help. Thank you!

How can I prevent the "w-current" class in Webflow from overriding the height of my custom class on a link block element?

Can anyone help me add a digital clock and date to my Webflow site? I've been able to add custom code, but I need assistance with styling the text. Thank you in advance for your help!

Can I capture a screenshot of a Webflow page on click and convert it to a downloadable PDF?

How can I pull the stored email from the first form submitted on our website and input it into a field on a later form during the sign-up process in Webflow? I have tried using the provided script but it only displays "undefined" in the field. I don't have much knowledge of JavaScript and found this script online.

How do I mirror user input from a form field to a non-form text field on the same Webflow page in real-time using JavaScript?

When will Webflow update the "Select Field" component to allow for a placeholder with different colors before and after selection, without the need for a label above the field?

Is there a way to auto-scroll the page in Webflow after a certain amount of time, without the script automatically scrolling back up if the user has already scrolled past the designated point?

How can I close a dropdown in Webflow when clicking on a link?