Believe someone set up fake account with my email
I got an email for a change of password request. I had not requested it so ignored it. I had forgotten how to login to my account so I went in with my username and found an account that does not have a blog or anything on it. There is no information on the WP account other than my email. I have since found my login for my regular account through my website.
I am concerned that someone set up a fake account and got me to just login and change my password which I have now done twice directly through the site. Is there a chance I just breached the security of my system and that someone now has access to my most secure passwords?
This is your username account profile here in the support forums https://en.forums.wordpress.com/profile/weeliam As there is no blog listed there and none is linked to your username I don’t have a clue as to how to address your concern. I’ll tag this thread for a Staff response. Please subscribe to the thread so you are notified when they respond and please be patient while waiting.
Thank you for your quick reply and looking at this for me.
My blog (which is woefully out of date) is here: http://opentopossibilities.ca/blog/wp-admin/. Someone had requested a password change twice for this username and it was not me. Hopefully nothing untoward. Don’t follow links through emails for this reason and didn’t this time either – rather generated new password by going directly to the site. Wonder if this might be an old username from when I had a previous website?
We’ll see what others might say.
http://opentopossibilities.ca/blog/ – is not a WordPress.COM blog
The site you are asking about does not seem to be hosted on WordPress.COM so you need to make friends over at WordPress.ORG the keepers of the software you are using.
This site is for support of sites hosted on WordPress.COM. You should address your questions to WordPress.ORG the keepers of the software you are using: http://wordpress.org/support/
The forum at WordPress.ORG is not connected to WordPress.COM so you will need to open an account at .ORG if you do not already have one. You may use the same email at WordPress.ORG as you do at WordPress.COM.
For more on the difference: http://support.wordpress.com/com-vs-org/
If you are asking for help with a WordPress.COM site then we need a link to that site to give you accurate help.
Thank you for your reply.
I do realize that my blog is on a different site.
My concern is with my account on this site as that is where the requests for change of password have come from without my having requested a change.
I went in directly through the site to change the password and just wanted to see if there is any chance that in doing so, someone was able to capture my new password (if there is a trojan or anything like that lurking that cause a loop hole in my computer while I’m online).
My wordpress.com account is under username weeliam.
I do not know when this was set up (it might have been for my previous website) as I do not remember setting this up at all since I do have a blog through WordPress.org.
If the chances are minimal that anything has been compromised that is great. I am not even sure why someone would want to get access to this and what applications they might be trying to use in getting a new password for it.
Here is the email I received (that I did not generate as I had not requested a new password). I received this email twice, once on April 2 and once on April 20 from (email redacted).
Someone recently requested that the password be reset for weeliam.
To reset your password please click this button:
If this is a mistake just ignore this email – your password will not be changed.
Trouble clicking? Copy and paste this URL into your browser:
Thanks for flying with WordPress.com
Any insight you can offer is greatly appreciated.
I have responded to you privately. Please check your email and respond from there if you have any questions.
The topic ‘Believe someone set up fake account with my email’ is closed to new replies.