Hacked – someone is making posts on my blog using my mod’s username ((author)

  • mdawg1

    (@mdawg1)


    14 years, 7 months ago

    This issue started recently – well after I updated to 2.8.4

    I have only two registered users on my blog. A admin (myself) and an author (for someone else). The blog is closed to any new user registrations and all comments must be approved before being posted.

    Recently someone has been posting SPAM on my blog using the username of my moderator.

    Incidentally, the mod’s account was created after the admin one. The admin one remains secure it seems.

    All I could think of was that I supplied this username and password a while back to some other blog that would then autopost my RSS Feed on its forum.

Viewing 4 replies - 1 through 4 (of 4 total)
  • s_ha_dum

    (@apljdi)

    14 years, 6 months ago

    Recently someone has been posting SPAM on my blog using the username of my moderator.

    ‘Posting’ as in ‘it gets through the filters and moderation and shows online’?

    Thread Starter mdawg1

    (@mdawg1)

    14 years, 6 months ago

    Yes of course the posts appear. The poster is somehow either logging in or hacking in under the identity of my moderator.

    The moderator is the author account. Mine is the admin account. There are only two users on my blog, and it is closed to all registrations.

    These are not comments – these are full-on posts being made under the username of my moderator.

    Samuel B

    (@samboll)

    14 years, 6 months ago

    log in to your host’s phpmyadmin
    go to your database
    “browse” the wp_users table
    look for rogue admin or editor acct.
    if present, it is likely you are hacked
    if not, change all passwords to something complex and look at
    http://codex.wordpress.org/Hardening_WordPress

    Thread Starter mdawg1

    (@mdawg1)

    14 years, 6 months ago

    Thanks. In the wp_users table there are only the two users – myself (admin) and the other one (author). The posts are being made under the author user name. So someone (or something) is simply logging in under his username and making spam posts.

    I had him change his PW, and will advise.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Hacked – someone is making posts on my blog using my mod’s username ((author)’ is closed to new replies.