How can I stop unauthozied users from logging in to my wordpress site?
-
I have had several attempts over the last few days of someone trying to login to my wordpress site under admin. How can I stop them permanently?
Blog url: http://care4yourcarpet.wordpress.com/The blog I need help with is: (visible only to logged in users)
-
I have had several attempts over the last few days of someone trying to login to my wordpress site under admin. How can I stop them permanently?
Blog url: http://care4yourcarpet.wordpress.com/The IP address appears to be from the Netherlands but is probably faked.
I have been receiving email notifications that they have tried 16 times and been blocked for 24 hours. This has happened 3 consecutive days now.
Its creepy. -
This thread has been flagged for Staff attention. Please be patient while waiting.
No one can access your account without the log-in information and it’s usually weak passwords that result in a site being hacked. Also note that hackers frequently hack email accounts first to get the login information for blogs.
When hacking is suspected this is what I advise:
1. Go here > Users > All Users and delete any user that does not belong there.
2. Disable post by email > http://en.support.wordpress.com/post-by-email/
3. Disable post by voice > http://en.support.wordpress.com/post-by-voice/
4. Change your blog password to a very difficult one and do not post it here > http://en.support.wordpress.com/passwords/#change-your-password
5. Use a secure, encrypted connection to connect to your Dashboard. Under Users → Personal Settings, check the box that says “Always use HTTPS when visiting administration pages, and click Save Changes.
6. Go to your email program and change the password to a very difficult onePlease read this section while waiting for a response form Staff. http://en.support.wordpress.com/security/
-
@care4yourcarpet: hi there, I am sorry you are running into this issue. Just to confirm, are you getting notifications that someone attempts to log in into your blog care4yourcarpet.wordpress.com as the user “care4yourcarpet”? Or are you getting notifications for a different site?
-
-
16 failed login attempts (4 lockout(s)) from IP: 5.39.218.136
Last user attempted: admin
IP was blocked for 24 hours
-
Thank you for providing the additional information.
We only support blogs on WordPress.com here, and the site http://edmondsbestcarpetcleaner.com is using free WordPress(.org) software.
To clear up any confusion, WordPress.com and WordPress.org are two different entities.
http://support.wordpress.com/com-vs-org/You can find support for self-hosted/installed versions of WordPress here:
http://wordpress.org/support/
http://codex.wordpress.org/To keep you safe in the future, you might want to consider VaultPress, our service that provides realtime, continuous backup and scans your website for security and performance. If you get hacked with VaultPress, we’ll have you back up in no time. More information can be found at this link.
You may also want to implement some (if not all) of the recommended security measures, for example, have another username instead of the widely used “admin”:
http://codex.wordpress.org/Hardening_WordPressFor more information, please contact the WordPress.org Support Forums:
http://wordpress.org/support/
- The topic ‘How can I stop unauthozied users from logging in to my wordpress site?’ is closed to new replies.
WordPress.com Forums 