Title: Admin User creating attack
Last modified: October 2, 2019

---

# Admin User creating attack

 *  [saruncloudspring](https://wordpress.org/support/users/saruncloudspring/)
 * (@saruncloudspring)
 * [6 years, 8 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/)
 * I am facing new admin user creation attack on one of my woocommerce site. The
   admin user are created with systemusers username and using [systemusers@gmailen.com](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/systemusers@gmailen.com?output_format=md)
   as email address. After creating the user admin and user are getting new user
   created email notifications. Anyone here face this same problem before??how I
   can protect my site from this attack???
 * When first time user created I found one vulnerable plugin on my site from wordfence
   scan I have deleted that plugin now and installed iTheme security pro version
   and enabled 2FA for admin users but after that still 5 times that user is creating
   on my site.

Viewing 5 replies - 16 through 20 (of 20 total)

[←](https://wordpress.org/support/topic/admin-user-creating-attack/?output_format=md)
[1](https://wordpress.org/support/topic/admin-user-creating-attack/?output_format=md)
2

 *  [nashe](https://wordpress.org/support/users/nashe/)
 * (@nashe)
 * [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097650)
 * how ?
    -  This reply was modified 6 years, 7 months ago by [nashe](https://wordpress.org/support/users/nashe/).
    -  This reply was modified 6 years, 7 months ago by [nashe](https://wordpress.org/support/users/nashe/).
 *  Thread Starter [saruncloudspring](https://wordpress.org/support/users/saruncloudspring/)
 * (@saruncloudspring)
 * [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097659)
 * [@nashe](https://wordpress.org/support/users/nashe/) please send then
 *  [nashe](https://wordpress.org/support/users/nashe/)
 * (@nashe)
 * [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097670)
 * how ? lol
    my email ?
 *  Thread Starter [saruncloudspring](https://wordpress.org/support/users/saruncloudspring/)
 * (@saruncloudspring)
 * [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097676)
 * Yes
 *  [nashe](https://wordpress.org/support/users/nashe/)
 * (@nashe)
 * [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097681)
 * done
    -  This reply was modified 6 years, 7 months ago by [nashe](https://wordpress.org/support/users/nashe/).

Viewing 5 replies - 16 through 20 (of 20 total)

[←](https://wordpress.org/support/topic/admin-user-creating-attack/?output_format=md)
[1](https://wordpress.org/support/topic/admin-user-creating-attack/?output_format=md)
2

The topic ‘Admin User creating attack’ is closed to new replies.

## Tags

 * [attack](https://wordpress.org/support/topic-tag/attack/)

 * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
 * 20 replies
 * 3 participants
 * Last reply from: [nashe](https://wordpress.org/support/users/nashe/)
 * Last activity: [6 years, 7 months ago](https://wordpress.org/support/topic/admin-user-creating-attack/page/2/#post-12097681)
 * Status: not resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics