Get a fresh cup of coffee, take a deep breath and carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.
If you’re unable to clean your site(s) successfully, there are reputable organizations that can clean your sites for you. Sucuri and Wordfence are a couple.
Thanks for your quick response.
I’ll do it.
Do we know what plugin is the culprit?
I see you were able to fix this? I now have the same problem, same deal 4 days ago. Can you share how you resolved the issue?
Hi, as I cannot know which is the plugin responsible for that, I reinstalled a backup that I had and desactived some plugings. I should update the wordpress version and some plugins but I have not did it yet. Now it works fine.
What I know is that happened when I updated the WordPress version and some plugins.
If I find out which plugin is the culprit I will notice it to you.
Thanks, I’ll do the same if I can pinpoint the cause.
Hello,
in my case the hole was in the pluging “WP Live Chat Support”
https://wp-livechat.com/important-update/
Our issue was that plugin too!!!
when I reinstalled the backup I disabled this plugin so I believe it was the problem!
Thanks!
Thank you as well for the update!
I also did have the same problem: a new user with admin rights registered as a user [email protected] today and I am trying to restore older backups.
Our service provide did not find any malware or anything in our site. It would be very useful to know if this hack comes from some Trojans in our PC or from a PLUGIN. This is the first time that I see somebody have dare to create its own admin account. This is quite strong security issue.
