Webmaster Forum

Go Back   Webmaster Forum > The Webmaster Forums > Tech Talk

Tech Talk Discuss computer issues, tech gadgets and hardware, operating systems, browsers, broadband and wireless, virus, trojan, and spyware help.


Closed Thread
 
LinkBack Thread Tools Display Modes
Share |
  #1 (permalink)  
Old 08-15-2017, 08:15 PM
Junior Member
Latest Blog:
None

 
Join Date: 10-25-16
Location: United States
Posts: 32
iTrader: 0 / 0%
Is My WordPress Hacked?

I logged into my email today, and noticed that there were 7 new users added to my account. How could this be if I'm the only admin?

I deleted all new users and changed my password but wanted to see if anyone here has ever experience this issue????
 

Advertisement

Advertisement

  #2 (permalink)  
Old 08-15-2017, 09:19 PM
Contributing Member
 
Join Date: 07-02-16
Posts: 1,022
iTrader: 0 / 0%
Have you installed a WordPress security plugin? If not, now would be the time to do it.
__________________
Disclaimer: I do not endorse Artist management companies in Mumbai or Top Wedding Planners in Mumbai. I am just helping a friend.
 
  #3 (permalink)  
Old 08-15-2017, 10:58 PM
KeepItSimple's Avatar
Contributing Member
Latest Blog:
None

 
Join Date: 07-09-10
Location: Bulgaria
Posts: 81
iTrader: 4 / 100%
You mean logged into the wordpress dashboard?
Probably you have turned on signups and some bots have registered. Please check the settings and let me know if signups are allowed.
 
  #4 (permalink)  
Old 08-15-2017, 11:12 PM
Banned
Latest Blog:
None

 
Join Date: 07-03-17
Location: India
Posts: 88
iTrader: 0 / 0%
remove all the registration related add ons.
Go to Settings -> General and uncheck "Membership-Anyone can register".

Download two plugins for more security-
1. "Login LockDown"
2. "Limit Login Attempts"

Congrats. You have secured your WordPress.
 
  #5 (permalink)  
Old 08-15-2017, 11:19 PM
KeepItSimple's Avatar
Contributing Member
Latest Blog:
None

 
Join Date: 07-09-10
Location: Bulgaria
Posts: 81
iTrader: 4 / 100%
Quote:
Originally Posted by apoorvsukumar View Post
remove all the registration related add ons.
Go to Settings -> General and uncheck "Membership-Anyone can register".

Download two plugins for more security-
1. "Login LockDown"
2. "Limit Login Attempts"

Congrats. You have secured your WordPress.
It is not really enough to secure WordPress by securing the login and protecting from brute force. There are many different attacks. A firewall should be put in place. For example the one in WordFence.
__________________
Beyond Multisite: 10 in 1 plugin for managing WordPress Multisite
 
  #6 (permalink)  
Old 08-15-2017, 11:28 PM
Banned
Latest Blog:
None

 
Join Date: 07-03-17
Location: India
Posts: 88
iTrader: 0 / 0%
Quote:
Originally Posted by KeepItSimple View Post
It is not really enough to secure WordPress by securing the login and protecting from brute force. There are many different attacks. A firewall should be put in place. For example the one in WordFence.
Yeah it's not enough. But what I provided is the first step to stop any ongoing further attacks. After following the said activities, one may take some more precautionary measures to secure WordPress. At least I provided some to-do points. If its wrong, then I expect some "to do" list from you too. I will glad to know if my process is wrong.

I found this article about securing WordPress from Forbes, and what I know by my knowledge, Forbes will not publish any article just in the fly. There would be some experts behind the scenes for scrutiny of these articles. At least some points which I mentioned is described here. Correct me if I am wrong.

https://www.forbes.com/sites/allbusi.../#ebd76717bca6
 
  #7 (permalink)  
Old 08-16-2017, 07:30 PM
Junior Member
Latest Blog:
None

 
Join Date: 10-25-16
Location: United States
Posts: 32
iTrader: 0 / 0%
Ah thanks I didn't look at the Role which was set to subscriber for all these users. I did go in the settings an uncheck the box "anyone can register" but I don't have a membership website, how were people registering?
 
  #8 (permalink)  
Old 08-16-2017, 11:36 PM
KeepItSimple's Avatar
Contributing Member
Latest Blog:
None

 
Join Date: 07-09-10
Location: Bulgaria
Posts: 81
iTrader: 4 / 100%
Quote:
Originally Posted by Adam_CYW View Post
Ah thanks I didn't look at the Role which was set to subscriber for all these users. I did go in the settings an uncheck the box "anyone can register" but I don't have a membership website, how were people registering?
Bots know the default registration address for WordPress sites and just visit it directly and register if registrations are allowed. You should be find now.
__________________
Beyond Multisite: 10 in 1 plugin for managing WordPress Multisite
 
  #9 (permalink)  
Old 08-17-2017, 03:56 PM
Junior Member
Latest Blog:
None

 
Join Date: 10-25-16
Location: United States
Posts: 32
iTrader: 0 / 0%
Ah interesting, thanks for the information KeepItSimple and everyone else who posted here!
 
  #10 (permalink)  
Old 08-18-2017, 09:42 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by Shubham007 View Post
for better security experience use top security plugin like wordfence, sucuri
Wordfence can't help if the site is hacked by other means. By that I mean FTP, some vulnerability in plugins or dated framework.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
  #11 (permalink)  
Old 08-23-2017, 09:22 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by raichelsimon3 View Post
without admin permission it is not possible, it may be possible that you gave anyone the password of admin and he/she change it....
Quote:
Originally Posted by ahsanamin View Post
You might have given permission for signup or again check them may be they are subscribers.
There are many other ways Hackers can gain access and create havoc.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
  #12 (permalink)  
Old 08-23-2017, 10:11 AM
Contributing Member
 
Join Date: 07-02-16
Posts: 1,022
iTrader: 0 / 0%
Quote:
Originally Posted by LMD View Post
Wordfence can't help if the site is hacked by other means. By that I mean FTP, some vulnerability in plugins or dated framework.
How do you safeguard against those threats?
__________________
Disclaimer: I do not endorse Artist management companies in Mumbai or Top Wedding Planners in Mumbai. I am just helping a friend.
 
  #13 (permalink)  
Old 08-23-2017, 10:44 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by vaguar View Post
How do you safeguard against those threats?
Many sites on the internet claim to know the answers - "20 simple tricks to secure...", "14 ways to prevent hacking of..." WordPress sites.

For me, I'm certain if you follow these pointers (as a start), you are at least going in the right direction:

- don't employ the use of every plugin under the sun - functionality is nice, but a fast, safe site is better.
- ensure your plugins have been around for a while, have been downloaded and used at least several thousands of times, and they rated at the top (read the reviews!)
- for the plugins you do eventually use - update them REGULARLY!
- update WordPress framework soon after it's become available (once the bugs are ironed out - unless it's a critical update)
- search out your theme in terms of whether it may be susceptible
- employ a security plugin (Wordfence is one)
- strengthen all login passwords (both hosting, FTP and WP login)
- regularly check out what's going on in the background in terms of failed login attempts, failed password recovery attempts via security plugin reports.

These above are all a good start. But to me, I think FTP can be a weak link, and it either comes down to the host, weak passwords - or both.

I've heard of a site being hacked where most of the above was taken to heart - even though there wasn't any indication of a login attempt, passwords were pretty strong - and they still got in and messed with guys site. The consensus was, the weak link was an FTP issue with the host.

These are the the ramblings of a non-security specialist. I'm just a little paranoid about "anything to do with being online", and I'm Ok with that.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
  #14 (permalink)  
Old 09-10-2017, 02:05 PM
tyler00's Avatar
Contributing Member
Latest Blog:
None

 
Join Date: 08-05-17
Posts: 57
iTrader: 0 / 0%
Please don't forget to keep your Wordpress up-to-date. A lot of sites tend to forget to allow WP to automatically update itself. Also, there is a chance you are using a plugin that is vulnerable. Or, someone simply guessed your password.
 
  #15 (permalink)  
Old 09-11-2017, 06:56 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by tyler00 View Post
Please don't forget to keep your Wordpress up-to-date. A lot of sites tend to forget to allow WP to automatically update itself. Also, there is a chance you are using a plugin that is vulnerable. Or, someone simply guessed your password.
Most of your post has already been discussed previously, except the password guess. For passwords, no hackers just sit there try and guess a sites password, they use auto scripts to hit multiple site logins continually and from different IPs. If the first attack doesn't work, they rinse and repeat with different ones again and again.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
  #16 (permalink)  
Old 09-15-2017, 06:40 AM
bywaterdigital's Avatar
Contributing Member
 
Join Date: 08-25-17
Location: York, UK
Posts: 61
iTrader: 0 / 0%
It's very possible. Is your site on shared hosting? This can be the culprit of a hack in many cases.

A security plugin is absolutely essential with Wordpress. I always use iThemes Security.
 
  #17 (permalink)  
Old 09-15-2017, 07:48 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by bywaterdigital View Post
It's very possible. Is your site on shared hosting? This can be the culprit of a hack in many cases.
Please explain. Because if your shared hosting example uses separate file spaces, an intrusion into one space, does not necessarily facilitate an open paths to other spaces on a server. It's when a server or server cluster, in general, is compromised, then there's a problem. And, that can not be a confined intrusion signature against shared hosting.

Now, it must be understood that server intrusions are most likely dependent upon the level of security employed to protect the hosting environment, which may, or may not correlate to a certain group of hosting companies being better than others for their security protocols.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
  #18 (permalink)  
Old 10-02-2017, 03:34 PM
Banned
Latest Blog:
None

 
Join Date: 09-29-17
Location: Pakistan
Posts: 40
iTrader: 0 / 0%
Quote:
Originally Posted by vaguar View Post
Have you installed a WordPress security plugin? If not, now would be the time to do it.
what security plugin you prefer ?

Quote:
Originally Posted by LMD View Post
Most of your post has already been discussed previously, except the password guess. For passwords, no hackers just sit there try and guess a sites password, they use auto scripts to hit multiple site logins continually and from different IPs. If the first attack doesn't work, they rinse and repeat with different ones again and again.
yeah right. thanks for deep information about hackers

Keep on updating your wordpress, and installing security plugin in will make you feel more afraid, because i also installed security plugin, then daily i was receiving 5-6 email to notify me that today this ip user tried to make 5-6 attempts etc

better to keep strong password, and also restrict users to make comments, allow users to make comments only those are regisered
 
  #19 (permalink)  
Old 10-02-2017, 10:56 PM
Contributing Member
 
Join Date: 07-02-16
Posts: 1,022
iTrader: 0 / 0%
Quote:
Originally Posted by LMD View Post
- update WordPress framework soon after it's become available (once the bugs are ironed out - unless it's a critical update)
A friend of mine had his site hacked by a good samaritan hacker just to show him that his wordpress was outdated, vulnerable and could be exploited. Thankfully the site wasn't critical and he and I both learned a valuable lesson out of it. Now we make sure to keep our platforms and plugins updated!
__________________
Disclaimer: I do not endorse Artist management companies in Mumbai or Top Wedding Planners in Mumbai. I am just helping a friend.
 
  #20 (permalink)  
Old 10-03-2017, 07:05 AM
LMD's Avatar
LMD LMD is online now
Contributing Member
 
Join Date: 11-04-12
Location: Where my wife tells me to be. :)
Posts: 4,742
iTrader: 0 / 0%
Quote:
Originally Posted by vaguar View Post
A friend of mine had his site hacked by a good samaritan hacker just to show him that his wordpress was outdated, vulnerable and could be exploited. Thankfully the site wasn't critical and he and I both learned a valuable lesson out of it. Now we make sure to keep our platforms and plugins updated!
A security-style "ethical hacking" service designed to seek out site/server vulnerabilities would be a very good business to be in these days.
__________________
SEO Friendly Responsive Web Design in Stouffville / Markham
Affordable Web Design by In Front Media in York Region
 
Go Back   Webmaster Forum > The Webmaster Forums > Tech Talk

Closed Thread


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How important is additional Wordpress security? johnkcopy Blogging Forum 14 12-15-2017 10:30 PM
Looking for Wordpress Plugin Developer admitcard Buy Web Services 1 06-16-2017 05:49 AM


V7N Network
Get exposure! V7N I Love Photography V7N SEO Blog V7N Directory


All times are GMT -7. The time now is 11:50 AM.
Powered by vBulletin
Copyright 2000-2014 Jelsoft Enterprises Limited.
Copyright © 2003 - 2014 Escalate Media




Search Engine Optimization by vBSEO 3.6.0 RC 2 ©2011, Crawlability, Inc.