Title: Bitcoin Attack Through WP Comments Last modified: June 7, 2019 --- # Bitcoin Attack Through WP Comments * Resolved [camprunamuk](https://wordpress.org/support/users/camprunamuk/) * (@camprunamuk) * [7 years ago](https://wordpress.org/support/topic/bitcoin-attack-through-wp-comments/) * Hello! We had originally installed the Akismet anti-spam plug-in, but had trouble installing the most recent update. Several fake spam comments were received that contained glowing reviews of our content. Then we received several threatening messages as comments. Among other things, the messages contained language like“ Hey. Soon your hosting account and your domain * will be blocked forever, and you will receive tens of thousands of negative feedback from angry people.”. They wanted us to pay 0.5 bitcoins before 6/1/2019 to avoid having this happen. I ignored the request for payment and deleted the comments. I installed the Anti- Spam Bee plug-in since Akismet was having trouble. The new plug-in successfully identified spam comments, so I thought the situation was contained. As soon as the deadline for payment passed, we started receiving loads of spam in our personal email along with subscriptions to what looks like hundreds of WordPress blog newsletters. Since then, I have installed the Wordfence plug-in. I ran a scan and there doesn’t appear to be any malware present on our site. We have stopped receiving spam comments, but we still have lots of spam and WordPress newsletters coming into our personal email. I can’t tell the difference between a genuine WordPress newsletter that I can just “Unsubscribe” and a fake one that will continue delivering more spam. I would like to find out if our customer’s accounts have been compromised and also how to stop this massive flow of spam that has hit our personal email. Any help/advice would be greatly appreciated! * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fbitcoin-attack-through-wp-comments%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 2 replies - 1 through 2 (of 2 total) * Moderator [James Huff](https://wordpress.org/support/users/macmanx/) * (@macmanx) * [7 years ago](https://wordpress.org/support/topic/bitcoin-attack-through-wp-comments/#post-11613344) * Carefully follow [this guide](https://wordpress.org/support/article/faq-my-site-was-hacked/). When you’re done, you may want to implement some (if not all) of [the recommended security measures](https://wordpress.org/support/article/hardening-wordpress/) and [start backing up your site](https://wordpress.org/support/article/wordpress-backups/). * [g0tr00t](https://wordpress.org/support/users/g0tr00t/) * (@g0tr00t) * [7 years ago](https://wordpress.org/support/topic/bitcoin-attack-through-wp-comments/#post-11614000) * [@camprunamuk](https://wordpress.org/support/users/camprunamuk/) It sounds like they are just abusing your email address because it is easily accessible on your website and looks like a personal email address. You should those email addresses from your website and switch to using a contact form that sends to a generic contact@ email address which you can then forward to your personal email address. * Unfortunately they will likely continue to abuse those email addresses by using it in their spam comments and annoyances like subscribing it to a bunch of lists. It might be easier to just scrap the email address and create a new one. Viewing 2 replies - 1 through 2 (of 2 total) The topic ‘Bitcoin Attack Through WP Comments’ is closed to new replies. * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 2 replies * 3 participants * Last reply from: [g0tr00t](https://wordpress.org/support/users/g0tr00t/) * Last activity: [7 years ago](https://wordpress.org/support/topic/bitcoin-attack-through-wp-comments/#post-11614000) * Status: resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics