Well, my inbox has been taking a beating as once again there are a new round of hackers trying to create Admin accounts. This happened to me and other WordPressers almost exactly one year ago. I posted about it last September, after a few weeks of new users popping up at a time when my page views were at their lowest. I made a list and it seemed to be helpful for others, so I will post a new list and add to them as they come into my website.
There appear to be a few Russian email addresses, not unusual in the world if hacking. I’ve also recently noticed a large influx of referrals from Russian casino website which may have something to with this latest set of attacks. What is the new surprise is that another WordPress-based site I visit regularly, Nikonrumors.com, is also referring these attacks. As before, you need to be concerned with these subscriber accounts as they are designed to be a proverbial foot in the door for hackers to convert them into administrator accounts. Of course, some of it is simply forum/blog registration spam. Either way you don’t want them on your site. You can read about many others who have caught these attacks in time, and some after it was too late, by searching for “WordPress hackers.” One way to help filter out these scumbags is to Google any suspicious email addresses. Some are so fishy that they don’t need to be looked up at all. So far we have these uninvited guests:
rosetta stone french email@example.com ***
The last one arrived as I was typing this post.
We now return to our regularly scheduled program…
[ *** My personal favorite. This one called out its spam-laden intent and required no investigating whatsoever!]