My blog is hacked!
-
I was administrating sacsizkral.wordpress.com, but somebody hacked my account! How could it be?
There are some pornographic blogrolls added without my consent! I can not log in and request a new password, because the hacker guy has changed my administrator e-mail and password!
I want my blog back…
What can I do or is there anybody can do something for it? -
-
-
@myblogishacked
It is more likely that someone has guessed your password.Immediately go and change your password to something difficult. Something none of your acquaintances could ever guess. Don’t wait a second!
Then contact support if you still think your blog was hacked. As far as I know, that has never happened to a blog on WordPress.com.
-
i know but i’ve already tried to reset my password; but system rejected my e-mail address
the only explanation i can make is that the hacker changed also e-mail address of my administrator account
-
Oh, drat, I had to answer the phone and did not read your post, only the title.
Still, change your passwords on your emails and any other accounts. If you use the same password for different things, that person can mess up your life.
And yes, certainly contact support.
-
@1tess – he has been locked out and the email changed.
I have noticed that people don’t make much distinction between “hacked” and stolen or guessed passwords.
I have seen a couple of other broken passwords and the Staff was great at cleaning things up and bringing back deleted content and getting rid of the junk and bad links.
-
Sorry, we are talking at the same time. If someone guessed your password on your blog, they could easily change the password to keep you from logging on to your account.
-
I know lots of people who use the same password for everything they do! Maybe minor changes if more characters are needed. Some of them have even told me (and lots of other people) what their password is!!! Not a good idea.
-
I have also seen log-in and passwords show up in public forums like here asking for help. Several over at WordPress.ORG. Amazing. Keeps the moderators scrambling to try and edit the password and such info. Sometimes it has taken a long time for a moderator to get to the info. Very bad.
-
OK :) hacked or stolen or guessed, whatever…
Thank you guys for your attention. i think i did everything i can do and hope to get a solution asap!
-
Also, people mistakenly call people who break into websites and cause mischief, hackers when they are actually CRACKERS. Hackers are the good guys who figure out how to do things with software and such that people never realized it could do.
http://wiki.answers.com/Q/What_is_the_difference_between_hacking_and_cracking
-
by the way, why wp lets people to change e-mail addresses of their wp acounts?
if this cracker guy could not change e-mail address, maybe i could reset my password and the problem could be solved easily. isn’t it a security gap?
-
If they guessed your password, which is almost certainly how they got in, the WP would think they were you, and would allow it.
About the only way that blogs here suffer this sort of thing is a password being guessed, the blog owner making someone an administrator on the blog that changes things, or someone leaves their computer at work logged into their account here and someone comes through and changes things, or you use a public computer and someone is able to get your login information because it was somehow saved on that computer.
-
One last note: ALWAYS make your password on your blog, and everywhere, very strong and difficult for someone to guess. If you can remember your password, then it is too weak. Also, change your passwords often.
-
Best wishes for a happy outcome. And mix up those passwords!
I am not paranoid, but even with good strong passwords things can go wrong:
And now to Richard’s posts about hacking and cracking:
My ATM was cracked.
Various people in Russia stole $8,000 from my checking account. They had figured out my #’s somehow! I did not even request an ATM card from my bank. But they started sending me one which I never activated. Only trashed it. But on the occasion of the theft, I was lazy and had not tossed the unwanted card out. When I could produce it physically in my hand, the bank people admitted someone had stolen money by “cracking” their system. Money restored to me.
Scary.And now I have wondered off topic. But my point is still: strong passwords.
and I’m sorry you had a hard lesson.
-
my password was really strong, i never leave my computer without logging out, i always log out my wp account, e-mails, facebook, twitter etc before leaving my place…
i know that kind of stuff, i’m a computer engineer :)
but if wp let users to change their e-mail address, this causes a security gap just like in my situation. maybe i can leave my computer without logging out, because i’m a human being; but wp should not allow crackers to make irreversible changes on my account!
- The topic ‘My blog is hacked!’ is closed to new replies.
WordPress.com Forums 