Opened 6 years ago
Closed 6 years ago
#44607 closed defect (bug) (invalid)
All WP Username changed to dexter and password changed
Reported by: | EuBo | Owned by: | |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | normal | Version: | 4.9.7 |
Component: | General | Keywords: | |
Focuses: | Cc: |
Description
We are using WP 4.9.7 and this morning somehow someone manage to change all the username of the WordPress to dexter. http://prntscr.com/k88j6u and change all the password.
It is unknown how it is done, but we have experience it before in our others wordpress installation (similarity the username was changed to dexter)
A user with username "dexter" who has administrator access signed in to your WordPress site.
User IP: 105.157.195.50
User hostname: 105.157.195.50
User location: Agadir, Morocco
Change History (1)
Note: See
TracTickets for help on using
tickets.
Hi there,
I'm sorry to hear this, but your site has been compromised. There is nothing we can do for you here, as the WordPress Trac is meant for bug reports and enhancements.
When an incident like this has occurred please restore your backups to regain access to your site (Please do not try to just clean up the bits you can see, as it is likely that files or content are modified).
If you further need support, you may post on our Support Forums, you may also want to look at Hardening WordPress.