Make WordPress Core

Opened 6 years ago

Closed 6 years ago

#44607 closed defect (bug) (invalid)

All WP Username changed to dexter and password changed

Reported by: eubo's profile EuBo Owned by:
Milestone: Priority: normal
Severity: normal Version: 4.9.7
Component: General Keywords:
Focuses: Cc:

Description

We are using WP 4.9.7 and this morning somehow someone manage to change all the username of the WordPress to dexter. http://prntscr.com/k88j6u and change all the password.

It is unknown how it is done, but we have experience it before in our others wordpress installation (similarity the username was changed to dexter)

A user with username "dexter" who has administrator access signed in to your WordPress site.
User IP: 105.157.195.50
User hostname: 105.157.195.50
User location: Agadir, Morocco

Change History (1)

#1 @Clorith
6 years ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Severity changed from critical to normal
  • Status changed from new to closed

Hi there,

I'm sorry to hear this, but your site has been compromised. There is nothing we can do for you here, as the WordPress Trac is meant for bug reports and enhancements.

When an incident like this has occurred please restore your backups to regain access to your site (Please do not try to just clean up the bits you can see, as it is likely that files or content are modified).

If you further need support, you may post on our Support Forums, you may also want to look at Hardening WordPress.

Note: See TracTickets for help on using tickets.