Title: Attack Issues Last modified: August 22, 2016 --- # Attack Issues * [KsvBist](https://wordpress.org/support/users/ksvbist/) * (@ksvbist) * [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/) * I found that some anonymous user was added to my website where as I don’t have added anyone in my site. It was user “Jlhy1101 with email Id [jlhy101@hotmail.com](https://wordpress.org/support/topic/attack-issues/jlhy101@hotmail.com?output_format=md)” Viewing 4 replies - 1 through 4 (of 4 total) * [suzettefranck](https://wordpress.org/support/users/suzettefranck/) * (@suzettefranck) * [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/#post-5482075) * Bummer, I would change all of your passwords immediately. * [Matt Knowles](https://wordpress.org/support/users/aestheticdesign/) * (@aestheticdesign) * [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/#post-5482082) * It’s possible, hard to say without seeing your site, that they created the user as a subscriber. * If that’s not a possibility with your site, then read and follow the instructions here: * [http://codex.wordpress.org/FAQ_My_site_was_hacked](http://codex.wordpress.org/FAQ_My_site_was_hacked) * [Matthew Wilcoxson](https://wordpress.org/support/users/akademy/) * (@akademy) * [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/#post-5482090) * I had exactly the same username/password appear on my own hosted site. I have no idea how they eveb found the site as the url is VERY complex… I have had no other users registered (not even spam ones). * They appear to have signed up as a subscriber. I’m unsure of what they did next. * I’ve taken the website offline for now… * (I’m getting paranoid now… maybe I shouldn’t be publically connecting my blog to that username…) * Moderator [bcworkz](https://wordpress.org/support/users/bcworkz/) * (@bcworkz) * [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/#post-5482143) * George, don’t panic yet. Like Matt indicated, check your general settings. If“ Anyone can register” is checked, there’s nothing to worry about, just uncheck and save the change. Delete the user. If it is NOT checked, you do have a problem. Follow Matt’s link. Still no reason to panic, it happens. It’s just data in cyberspace, no one is physically hurt here. * If your site is online, spambots will find it no matter how obscure. Complex URLs are a challenge to humans, not ‘bots. They’ll try to register on any form they come across, hoping it’ll lead to their ability to drop spam in comments. This is very likely what jlhy101 is. Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘Attack Issues’ is closed to new replies. ## Tags * [anonymous user](https://wordpress.org/support/topic-tag/anonymous-user/) * In: [Hacks](https://wordpress.org/support/forum/plugins-and-hacks/hacks/) * 4 replies * 5 participants * Last reply from: [bcworkz](https://wordpress.org/support/users/bcworkz/) * Last activity: [11 years, 4 months ago](https://wordpress.org/support/topic/attack-issues/#post-5482143) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics