@gmail.com Administrator Accounts Hack? | ww.wp.xz.cn

Drew Baker
(@dbaker)

15 years, 9 months ago
Hey Guys,
So today I noticed I had 6 more administrator accounts in WordPress than I’m supposed to have!

At first I thought someone in our company had mistakenly setup some accounts, but I asked around and no one had. Then I noticed that all these new accounts had a similar naming convention. Here are the unknown account details:
```
AidenD
[email protected]

AlexisB
[email protected]

AlexT
[email protected] 

BaileyK
[email protected]

ColtonM
[email protected]

DylanB
[email protected]
```
I think my site was compromised. I’ve been running 3.0.1 since it came out, but this could have happened before an upgrade in the past. I’ve gone through the user registration emails, and none of these names came through (which makes me even more suspicious).

My site (www.popmag.com.au) hasn’t shown any unintended results, so I don’t think we have been attacked, but we have been compromised.

At the moment I’ve bumped all suspect users down to Subscribers pending my investigation.

Any ideas? Have you heard of this before?

Thanks,
Drew

Viewing 1 replies (of 1 total)

esmi
(@esmi)

15 years, 9 months ago

What to do if you think you’ve been hacked:
http://codex.ww.wp.xz.cn/FAQ_My_site_was_hacked
http://ww.wp.xz.cn/support/topic/268083#post-1065779
http://smackdown.blogsblogsblogs.com/2008/06/24/how-to-completely-clean-your-hacked-wordpress-installation/
http://ottodestruct.com/blog/2009/hacked-wordpress-backdoors/

Viewing 1 replies (of 1 total)

The topic ‘@gmail.com Administrator Accounts Hack?’ is closed to new replies.

Tags

administrator

In: Fixing WordPress
1 reply
2 participants
Last reply from: esmi
Last activity: 15 years, 9 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics