This is a warning to my fellow WordPress users… over the past few days there have been some hackers taking over our sites via accounts setup for new users. The attacks seem to be centered in Europe, Germany primarily, by registering users with Gmail acounts. I have received three over the past three days which after a quick Google search on the email address netted several sites with the same warning.
So I will promote the advice by another savvy and alert WordPresser who caught one of the same addresses registering at his site. Don’t use the default admin user name ( I never did in the first place), and change your password just in case (that I just did).
I am joining in the network of those posting about this hack/attack in order to warn others. I am going to post the names and emails of the attack accounts I have been contacted by below. This is by no way complete as there do seem to be several others out there. Feel free to comment or contact me with any you may have encountered.
- Username: jaimelipani
- E-mail: firstname.lastname@example.org
- Username: MikeWink
- E-mail: email@example.com
- Username: Andrianq
- E-mail: firstname.lastname@example.org