Hacked Article
-
Hi
One of my postings called “Champion” (https://pettimes.wordpress.com/2015/03/20/police-dogs) appears to have been hacked. The setting on the article has been changed to private and when I call up the article, the copy is there but all the photos have disappeared. The photos no longer show in my media library either. The help I am seeking from you is to ensure this sort of hack cannot happen again, as well as getting the article back to its original state. I think I know the person who is behind this, and believe me they are no friend of mine. I can give you a name and ISP number, if it is helpful. I’m hoping I can go into my site as administrator and set the file back to public, and if necessary I will re-load the photographs. Thank you. Fran WallaceThe blog I need help with is: (visible only to logged in users)
-
Hi there,
re: hacked accounts and blogs
If anyone is posting anything to your blog or removing anything from it, or changing anything in it, or if your blog has been deleted and you did not delete it, then it’s most likely that you have provided them with the ability to do so, either deliberately by adding them as official users, or by allowing them access to your login information, or by posting content that makes it easy for them to guess what your log-in information is.
For you the question that needs to be answered is: Who, aside from me, has access to my login information?
Go to your email program and change the password to a very difficult one because that’s how many hackers gain access to blogs.
Read > http://en.support.wordpress.com/security/
1. If you can log-in go here > Users > All Users and delete any user that does not belong there.
2. Disable post by email > http://en.support.wordpress.com/post-by-email/
3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/
4. Change your blog password to a very difficult one > http://en.support.wordpress.com/passwords/#change-your-password
You can also reset your password via your Settings tab on the WordPress.com home page:
http://wordpress.com/#!/settings/5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.
6. Use two step authentication http://en.support.wordpress.com/security/two-step-authentication/
7. Run a security scan on your computer.
8. Never leave your computer logged into your blogs and walk away from it. Always log out properly.
P.S. Staff have records of who did what under which username and login information and when they did it. I flagged this thread for a Staff follow-up. Please subscribe to it so you are notified when they respond. To subscribe look in the sidebar of this thread, find the subscribe to topics link and click it. Note that there is a backlog and be patient while waiting.
-
Thank you. I never created any additional users for my blog, nor shared my password. As a result of this hack, I changed the Administrator password yesterday. I have also followed all your suggestions today. The person – whom I believe is behind the hack – has access to very sophisticated computer users as one of her associates runs an ISP. I just want to make sure this person — and their associates — can no longer access my blog. Thank you again.
I look forward to hearing from staff about what they find out about the hack. I would like confirmation about who accessed the blog.
Once I hear back from staff, I will fix the article & re-post it. Right now, I’m leaving it as is, in order not to muddy the ‘trail’.
-
I’m sending you a private message about this matter. Please look for an email from WordPress.com at the email address attached to this account.
- The topic ‘Hacked Article’ is closed to new replies.
WordPress.com Forums 