I’m running a WordPress website without any public posts published under a specific username, yet a hacker has been attempting to breach the site using that specific username. How?
Keep in mind, there are no posts or pages published using that account, the site doesn’t include an authors page, and there is no publicly published list of accounts … so, where are they getting the username from?
(and no, it’s not a common name, and they’ve specifically targeted this account, not randomly guessed it)
- The topic ‘Security (hackers getting usernames)’ is closed to new replies.