Title: API Hack Last modified: January 6, 2026 --- # API Hack * Resolved [blueblue5](https://wordpress.org/support/users/blueblue5/) * (@blueblue5) * [4 months, 2 weeks ago](https://wordpress.org/support/topic/api-hack/) * I have read the thread and understand that the issue does not exist within the MCC plugin. However, I think its important to mention that every client of mine had their site experience the vulnerability and exploit for over two weeks. Thousands of dollars lost. While I respect MCC transparency pointing out the issue doesnt lie in the API, the plugin is clearly being exploited and targeted by hackers. Viewing 3 replies - 1 through 3 (of 3 total) * Plugin Author [edward_plainview](https://wordpress.org/support/users/edward_plainview/) * (@edward_plainview) * [4 months, 2 weeks ago](https://wordpress.org/support/topic/api-hack/#post-18775851) * Sorry to hear your site has been impacted. * What we have seen: 1. For a couple months hackers have been targeting woocommerce installs. Different hacking patterns: brute forcing passwords, vulnerable plugins (especially file manager plugins), etc. Adding fake admins, and changing code via the dashboard code editor. 2. More sophisticated hackers recently targeted some sites that connect to our API, by sending “fake payloads” or spoofing connection data. Our official API was not impacted. * V2.152 or greater implemented strict API IP Verification for #2. * We had/have also been adding other security features, like to stop any new admins being added from other WordPress plugin/theme vulnerabilities, disabling the wp dashboard code editor, disabling xlm-rpc, etc. And have a few other things we are releasing soon. Shouldn’t have really had to do that though, since its beyond the scope of a gateway. Also, the WordPress Plugin Team did an audit of the plugin code. * To make sure your site is 100% clean: 1. Update WP, and all plugins/themes. Including MyCryptoCheckout. 2. Refresh Connection: Go to Settings > MyCryptoCheckout and click “Refresh Account Data” at the bottom of the page. This resets your API security tokens and connection. 3. Check All Plugins/Themes File Integrity – Recommendation: Sucuri Security [https://wordpress.org/plugins/sucuri-scanner/](https://wordpress.org/plugins/sucuri-scanner/) 4. Check for “Rogue” Admins: Go to your WordPress Users list. Look for any Administrator accounts you do not recognize. * After that, retry a checkout and make sure the address matches your settings. * If you have further questions let us know. * Thread Starter [blueblue5](https://wordpress.org/support/users/blueblue5/) * (@blueblue5) * [4 months, 2 weeks ago](https://wordpress.org/support/topic/api-hack/#post-18777907) * Thanks for your reply [@edward_plainview](https://wordpress.org/support/users/edward_plainview/). is there a good email address we can reach you at to further discuss? - This reply was modified 4 months, 2 weeks ago by [blueblue5](https://wordpress.org/support/users/blueblue5/). * Plugin Author [edward_plainview](https://wordpress.org/support/users/edward_plainview/) * (@edward_plainview) * [4 months, 2 weeks ago](https://wordpress.org/support/topic/api-hack/#post-18777955) * [info@mycryptocheckout.com](https://wordpress.org/support/topic/api-hack/info@mycryptocheckout.com?output_format=md) Viewing 3 replies - 1 through 3 (of 3 total) You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fapi-hack%2F%3Foutput_format%3Dmd&locale=en_US) to reply to this topic. * ![](https://ps.w.org/mycryptocheckout/assets/icon.svg?rev=1869074) * [MyCryptoCheckout - Bitcoin, Ethereum, and 100+ altcoins for WooCommerce](https://wordpress.org/plugins/mycryptocheckout/) * [Frequently Asked Questions](https://wordpress.org/plugins/mycryptocheckout/#faq) * [Support Threads](https://wordpress.org/support/plugin/mycryptocheckout/) * [Active Topics](https://wordpress.org/support/plugin/mycryptocheckout/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/mycryptocheckout/unresolved/) * [Reviews](https://wordpress.org/support/plugin/mycryptocheckout/reviews/) * 4 replies * 2 participants * Last reply from: [edward_plainview](https://wordpress.org/support/users/edward_plainview/) * Last activity: [4 months, 2 weeks ago](https://wordpress.org/support/topic/api-hack/#post-18777955) * Status: resolved