WordPress.com Forums » Topic: Spam invasion

auxclass on "Spam invasion"

auxclass — Tue, 20 Nov 2012 01:58:15 +0000

@frie7019

The site you are asking about does not seem to be hosted on WordPress.COM so you need to make friends over at WordPress.ORG the keepers of the software you are using.

http://en.forums.wordpress.com/topic/7-things-to-know-before-posting-in-wordpresscom-forums?replies=1

This site is for support of sites hosted on WordPress.COM. You should address your questions to WordPress.ORG the keepers of the software you are using: http://wordpress.org/support/

For more on the difference: http://support.wordpress.com/com-vs-org/

frie7019 on "Spam invasion"

frie7019 — Tue, 20 Nov 2012 00:31:55 +0000

My web site http://www.friendsofthecarpriver.com has also been hacked via WordPress. Content is completely deleted and I cannot login via WordPress. (user name and password were not easy - how did they get in?)
I've contacted my hosting service for file restoration, but how do I get my WordPress login restored for the web site? Or do I have to create a new account? (which I had to do to post to this blog.) Thx.

kathrynwp on "Spam invasion"

kathrynwp — Mon, 19 Nov 2012 19:48:35 +0000

richardw2012 - I'll email you so we can discuss this privately.

richardw2012 on "Spam invasion"

richardw2012 — Mon, 19 Nov 2012 19:40:19 +0000

Hi Kathrynwp

Thanks for this, the account I'm concerned about is:
http://kevincetnz.wordpress.com/

I had to create a new user to be able to post.

Cheers

kathrynwp on "Spam invasion"

kathrynwp — Mon, 19 Nov 2012 16:32:53 +0000

richardw2012 - the email on your account was not changed.

kathrynwp on "Spam invasion"

kathrynwp — Mon, 19 Nov 2012 14:45:19 +0000

Thank you for reporting this. We are aware of the situation and our team is actively working removing the spam posts and resetting the passwords from everyone affected. In the meantime, you can delete any unauthorized posts on your account, if you haven’t already.

While we will be resetting the passwords for any affected accounts ourselves, you can also reset your password via your Settings tab on the WordPress.com home page:
http://wordpress.com/#!/settings/

titanioverde on "Spam invasion"

titanioverde — Mon, 19 Nov 2012 14:34:39 +0000

And today my password was reset, when I already changed it last night. A bit late. ^^u

timethief on "Spam invasion"

timethief — Sun, 18 Nov 2012 21:53:51 +0000

I flagged this thread for Staff help.

richardw2012 on "Spam invasion"

richardw2012 — Sun, 18 Nov 2012 21:51:59 +0000

Oh ok. Any ideas how to get it deleted?
Reset password doesn't work as it goes to the hacker plus the manual recover account has been hacked also.

I'm picking this will probably affect a lot of users here...

timethief on "Spam invasion"

timethief — Sun, 18 Nov 2012 21:48:47 +0000

We Volunteers cannot delete the blog for you.

richardw2012 on "Spam invasion"

richardw2012 — Sun, 18 Nov 2012 21:47:58 +0000

Same happened to mine:
http://kevincetnz.wordpress.com/

Please delete blog (as I can't access account anymore) as its no longer needed.

timethief on "Spam invasion"

timethief — Sun, 18 Nov 2012 21:44:31 +0000

posts are already trashed.

Please check your Trash and you may be able to restore posts that have not been permanently deleted.
http://en.support.wordpress.com/trash/
http://en.support.wordpress.com/trash/#deleting-permanently

If they aren't there then you may have to find cached versions in Google's cache and copy and paste the content into new posts.

timethief on "Spam invasion"

timethief — Sun, 18 Nov 2012 21:41:59 +0000

Go to your email program and change the password to a very difficult one because that's how many hackers gain access to blogs
Read > http://en.support.wordpress.com/security/

1. If you can log-in go here > Users > All Users and delete any user that does not belong there.

2. Disable post by email > http://en.support.wordpress.com/post-by-email/

3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/

4. Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password

5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.

P.S. I flagged this thread for Staff help. Please confirm the URL of the blog you are referring to.

titanioverde on "Spam invasion"

titanioverde — Sun, 18 Nov 2012 21:39:11 +0000

I just wanted to warn about which seems to be a spam invasion. Some bot posted a spam image in each of my blog. I already changed my password, and posts are already trashed.