Forced Password Changes
-
Why was I forced to change my password/reset my password and then denied access to my account? Is this because I have a free account and not a paid one? It seems every other month, I have to reset my password with you all. This is going to result in me contacting the Federal Trade Commission and reporting this to them, since it seems, I get an e-mail advertisement suggesting that I get a paid plan with WordPress and on the same day, I end up being forced to change/reset my password and I then I have to choose a password of your liking, not my own liking. This is not acceptable and it won’t be tolerated.
The blog I need help with is: (visible only to logged in users)
-
Hello there, I’m adding a modlook tag to get the attention from the staff to help you. Appreciate your patience.
-
Hi there,
The password on your account was reset eight hours ago as a security precaution, after we detected your login details on a list of compromised credentials that were obtained from breaches at other services and published online by security researchers. We sent you an email explaining this at the same time the password was reset.
This was done to prevent unauthorised access to your account by someone who might have stolen your credentials at another service where you were using the same email address and password, and has nothing to do with getting you to buy upgrades. The fact that you received a marketing email on the same day is pure coincidence. If you no longer wish to receive marketing emails from us, you can disable them from the account settings page:
https://wordpress.com/me/notifications/updates/
This is the only time we’ve ever forced-reset the password on your account – the logs for your account shows no other recent password reset requests made by you either, so I’m not sure what you mean that you need to do this every other month.
I then I have to choose a password of your liking, not my own liking.
We have a list of commonly used passwords that are not allowed, we don’t allow re-use of an old password, and we require passwords of a certain length in order to ensure this single point of failure in accessing your account is effective. If we didn’t do this, and your account got hacked as a result, you would blame us for not sufficiently protecting your account, so we err on the side of caution and accepted best practices in the online industry in this regard.
-
This “incident” was not the only time that my password has been reset. This has happened multiple times, and it seems to happen on an almost every month basis. So apparently, some “outside researcher” must have “breached” WordPress records of this happening, because this has been an on-going issue (that I am now putting my foot down about).
I contribute this issue happening because as I stated before, I get an advertisement from WordPress and then ON THE VERY SAME DAY, I end up having to change my password because of something that happened. There seems to be a lot of coincidences in this matter.
YOU may need to dig a little bit deeper in this matter. I just love it when people tell me that something hasn’t happened to me when it has. Why would I make such a big FUSS about something that didn’t happen to me, Really?
- The topic ‘Forced Password Changes’ is closed to new replies.
WordPress.com Forums 