Email being sent from (email visible only to moderators and staff)
-
Hi, I am getting a bunch of returned mail in my email inbox. Apparently I am sending out emails from wordpress@[mysiteaddress] containing pornographic descriptions to invalid email addresses. Please help!
The blog I need help with is: (visible only to logged in users)
-
I tagged this thread for Staff assistance. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it.
-
If anyone is posting anything to your blog or removing anything from it, or changing anything in it, or if your blog has been deleted and you did not delete it, then it’s most likely that you have provided them with the ability to do so, either deliberately by adding them as official users, or by allowing them access to your login information, or by posting content that makes it easy for them to guess what your log-in information is.
For you the question that needs to be answered is: Who, aside from me, has access to my login information?
Go to your email program immediately and change the password to a very difficult one because that’s how many hackers gain access to blogs.
Read > http://en.support.wordpress.com/security/
1. If you can log-in go here > Users > All Users and delete any user that does not belong there.
2. Disable post by email > http://en.support.wordpress.com/post-by-email/
3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/
4. Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password
You can also reset your password via your Settings tab on the WordPress.com home page:
http://wordpress.com/#!/settings/5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.
6. Use two step authentication http://en.support.wordpress.com/security/two-step-authentication/
7. Run a security scan on your computer.
8. Never leave your computer logged into your blogs and walk away from it. Always log out properly.
P.S. Staff have records of who did what under which username and login information and when they did it. I flagged this thread for a Staff follow-up. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it. Note that there is a backlog and be patient while waiting.
-
timethief, no one is posting on my blog or doing anything on my blog. I am just getting bounced back emails indicating that emails have been sent from “(email visible only to moderators and staff)” which is not one of my email addresses.
-
Since the word “wordpress” is appearing in these bounced back spam emails, it makes me think this is a wordpress issue. But I have never heard of this email address before and it is bouncing back to my regular address.
-
Thanks for providing the email address. Though the software redacts it ie. hides it, Staff can still read it. Please e patient while waiting for Staff.
-
I just spoke to Go Daddy, and they said I have been “spoofed” and need to set up an SPF record through wordpress…
-
-
-
Hi there,
This does indeed sound like email spoofing. As GoDaddy is your email provider you’ll need to get the SPF record from them.
Once that is done you can add a TXT record to your DNS setting which contains the SPF details they provide.
Here is how to edit your custom DNS setting to add the TXT record.
- The topic ‘Email being sent from (email visible only to moderators and staff)’ is closed to new replies.
WordPress.com Forums 