account has been hacked – what do do next ?
-
Dear Support team, today my account for
http://stefanvidyawedding.wordpress.com
and
http://abi90overbach.wordpress.com
was hacked I think.
The theme and the title have been changed (some content is still there).
I can see my bogs in the dashboard, but why I try to display my blog, I am redicrected to “udaygigi.com”my user ID is stefanvidyawedding and my email address
(email visible only to moderators and staff).I changed my password, but I don’t have control over my blogs.
what do I have to do to get back control and restore the blog like it was on 12. April 2015 ?
thanks and best regards,
stefan SyberichsThe blog I need help with is: (visible only to logged in users)
-
Dear Support team, today my account for
http://www.nerdylifeofmine.com
Yesterday I found out I was hacked. At least it looks like I was.
The theme and the title have been changed (some content is still there).
I can see my bogs in the dashboard, but why I try to display my blog it shows me broken links or missing pages.My OpenID is https://nerdylifeofmine.wordpress.com/ and my email address is (email visible only to moderators and staff)
I changed my password and fixed most of changes. But things still seem buggy. Right now things seems working and I’m able to post from the app and desktop.
I just want to make sure that everything is okay and what can been done to keep this from happening.
Thank you for your time,
Jason Roberts -
re: hacked accounts and blogs
If anyone is posting anything to your blog or removing anything from it, or if your blog has been deleted and you did not delete it, then it’s most likely that you have provided them with the ability to do so, either deliberately by adding them as official users, or by allowing them access to your login information, or by posting content that makes it easy for them to guess what your log-in information is.
For you the question that needs to be answered is: Who, aside from me, has access to my login information?
Go to your email program and change the password to a very difficult one because that’s how many hackers gain access to blogs.
Read > http://en.support.wordpress.com/security/
1. If you can log-in go here > Users > All Users and delete any user that does not belong there.
2. Disable post by email > http://en.support.wordpress.com/post-by-email/
3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/
4. Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password
You can also reset your password via your Settings tab on the WordPress.com home page:
http://wordpress.com/#!/settings/5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.
6. Use two step authentication http://en.support.wordpress.com/security/two-step-authentication/
7. Run a security scan on your computer.
P.S. Staff have records of who did what under which username and login information and when they did it. I flagged this thread for a Staff follow-up. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it. Note that there is a backlog and be patient while waiting.
-
Hi @stefanvidyawedding, @vmroberts1021.
I checked both of your accounts and it doesn’t like you were hacked. Instead, there was a bug in our system a few days ago that is likely to have caused the issues you mentioned. Our team was made aware of this and rolled out some fixes, but it’s possible there may still by some errors.
Can you let me know if you’re still having any trouble with your sites? If anything still looks to be broken then I’ll let our team know straight away.
-
Hi all,
I have back my old blog appearance :-) I was a little in panic because I was looking for an easy possibility to take the blog offline without deleting it or losing data, I coul dnot find one at a glance.
Yes, in fact I found later that a name setting was swapped in the dashboard. After changing this back, and some sync time, it was back to normal.
I may have to read the manual again, maybe it is even there: but some easy way to disable the blog (without deleting data, just to be on the safe side until the situation has been analyzed) would be good.
Thanks for the support :-)
best regards,
Stefan -
@siobhyb
Thank you for writing back about this issue. I was able to get my site back to normal after spending a few hours fixing everything. I did find that there were posts that are missing and/or changed for whatever reason. But everything looks to be running smooth. Thank you again for you response and having your team look into this problem.@timethief
The only people that are able to write or post anything are family and friends. That and they only are about to write. I have it set up to where I approve anything that they are going to post. They can’t not edit, delete or change anything on the site.
But thank you for the information and your time on posting everything :)~Jason Bucky Roberts
-
- The topic ‘account has been hacked – what do do next ?’ is closed to new replies.
WordPress.com Forums 