Defaced

  • Unknown's avatar
    onlytalent · Member ·

    Hello,

    someone defaced my site (deltaarmyofcp.wordpress.com) and he changed to theme from the Retired Digg-3 to now, an unwanted theme.

    Can you please restore the Digg-3 theme, thank you

    The blog I need help with is: (visible only to logged in users)

  • Unknown's avatar
    timethief · Member ·

    Go to your email program and change the password to a very difficult one because that’s how many hackers gain access to blogs.

    Then read this please knowing that blogs don’t get hacked when security protocols are followed. > http://en.support.wordpress.com/security/

    1. If you can log-in go here > Users > All Users and delete any user that does not belong there.

    2. Disable post by email > http://en.support.wordpress.com/post-by-email/

    3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/

    4. Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password

    5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.

    I tagged this thread for a Staff follow-up. Please subscribe to it so you are notified when they respond.

  • Unknown's avatar
    timethief · Member ·

    Blogs do not get hacked unless you fail to follow security protocols.
    Who has access to your login information?
    Did you use the same password for your email account and your blog?
    Are you sharing log-in information with anyone or leaving it where anyone can locate it?
    Is your password a weak one that others can easily guess?
    Are you remaining logged in on your computer so anyone can come along and access your blog through it?

  • druesome · Staff ·

    Hi there!

    I noticed activity that suggests that another user whom you gave admin access made considerable changes to your blog, including the change of theme. Did you add that user intentionally? I also see that you got the Digg-3 theme reactivated, are you all set with that?

    I would go with timethief’s suggestion. And just to add another layer of security, please enable Two-step Authentication on your account:

    Enable Two-Step Authentication

    In the future, I’d be extremely careful about giving users admin access to your blog. This gives them unlimited control over your blog and may result in dire consequences if things go awry between you and them.

    http://en.support.wordpress.com/user-roles/#administrator

    Let me know if you have more questions!

    Cheers,

    Andrew D.

  • The topic ‘Defaced’ is closed to new replies.