Created a fresh backup of our working WordPress site yesterday, downloaded and installed it on a another server for testing purposes. All went well.
However… this morning I checked the working server access log and found that this new package archive.zip file, with its unique and non-guessable name, had been downloaded by a 3rd party. The IP address doing the download is supposedly a Microsoft IP address (188.8.131.52) which makes this even stranger.
We’ve since cleared out all packages, changed all user and database passwords and implemented restricted access on our wp-snapshots directory but am wondering if anyone else has seen anything like this. It is very inconvenient to have this sort of thing happening.
- The topic ‘Package downloaded by ???’ is closed to new replies.