Site Hacked – Not Getting Support Through Contact

  • Unknown's avatar
    cleverlysimple · Member ·

    Hello,

    Someone created a website using my email address this morning. The dashboard does not allow me to delete the site or even contact support. It’s just a blank screen when I try to chat or reach support. I have emailed [email protected] with no response. I need this website taken down asap as it’s using my trademarked name.

    I did not create this account nor authorize anyone to do so. I also did not create the site. It looks like someone foreign did using my email address and name. Please contact me as soon as possible. (email visible only to moderators and staff)

    The website they created was cleverlysimple.design.blog

    The blog I need help with is: (visible only to logged in users)

  • kokkieh · Staff ·

    Hi there,

    The WordPress.com account you’re using to post here is over nine years old – it was created in February 2011, using the Gmail address you mentioned in your post. Is it possible that you created the account then and have since just forgotten about it?

    The site, cleverlysimple.design.blog, was created by this account two days ago, but I don’t see any evidence in our logs of any unauthorised access – for example, there hasn’t been any password resets in the past year – which means whoever created this site either had access to a computer that was already logged into your account, or otherwise knew the password.

    As a precaution, I’d recommend you immediately change the password for this WordPress.com account, and also for your email account, and any other accounts using the same email to log in, particularly if you use the same password on multiple sites – it’s possible someone got your email and password from a list of login details that was stolen from another service, and managed to use that to log into your old WordPress.com account. If that’s the case, they’re likely trying those login details at other services as well to see if there are any other accounts of yours they can access.

    As you’re logged into the account, you should be able to delete the site by going to My Site ->Manage ->Settings. For security reasons we cannot do this on your behalf.

    If you no longer want this WordPress.com account, you can close it from this page:

    https://wordpress.com/me/account/

    You’ll find the account closure option at the bottom of the page.

  • kokkieh · Staff ·

    I ran your email address through https://haveibeenpwned.com/. That’s a site that monitors the web for known data breaches, and you can use it to see if your login details had been exposed at any point.

    Your email address returns results for several breaches on different services, which means your passwords you were using for each of those services at the time the breach happened are potentially known to someone. If any of those were also the same as the one used for this WordPress.com account, that would explain how they managed to get into your account.

  • The topic ‘Site Hacked – Not Getting Support Through Contact’ is closed to new replies.