WordPress blogs targeted by hackers
As a regular reader of Honeytech Blog you are surprised to see a random and suspicious post published recently (we have deleted it already). For some reasons, this suspicious user with role of contributor got access and able to publish the post without any permission from administrator. The user name is “wordyt” and it is advised to fellow bloggers that if you find such user registered in your wp-admin panel, then delete this user as soon as possible and on priority basis.
WordPress blogs are now targeted by hackers and many bloggers facing this problem and if you have been affected by this user, let us know in comments section with us. Here are the screenshots of the posts publish by this user.
- Disable registration on your blogs
- If you wants to allow the registration then go to General Settings>New User Default Role and make sure you choose the default role to subscriber
Something similar happened to mh blog as well. Some random post was made and published automatically. What puzzled me was, a contributor's article being published without Admin's approval. Really really wierd.
@Paritosh Yeah, i happened twice for me and i didn't figure out the users privileges. It better to stop new registration and contributes role until be have the next security update.