Unauthorized new user
I received email notice of a new user being added. As this was unauthorized, I quickly accessed my WordPress account, confirmed the email was correct, and deleted the user. I did so so quickly that I did not notice what privileges / role was assigned.
Has my site been hacked? Recommendations for ensuring this matter is taken care of – and action steps to take to prevent it from happening again are welcomed.
The blog I need help with is vineyardcounselingtendrils.wordpress.com.
We need a link to the site you are talking about.
You need to go into your account and change the password immediately though and I would also suggest changing the password for your email address associated with the blog. And make them strong, and do not use the same email address for the two. Make them different.
If you can remember a password, it is not strong enough.
The only “hacked” sites I have seen here have been people getting the password somehow to a site so you do want to be careful how you log in and use a tough password.
You should also check to make sure that someone has not added a new user to your site. Problems have also happened when there was more than one Admin. and an Admin left on less than graceful terms.
Dashboard >> Users
There have also been a few Posts on “hacked” sites and it was because someone got the Post by Email address and using the Post by Email to send in new Posts, if you have Post by email you can regenerate the address for that feature.
If you are really concerned you could as the staff to look at your site: http://en.support.wordpress.com/contact/
You could also use a secure log-in in case you are on an unsecured link: http://en.support.wordpress.com/https/
The topic ‘Unauthorized new user’ is closed to new replies.