Concern Of Having My Login / Pass Breached?

  • I recently got an email stating that for some crazy reason

    Someone has asked to reset the password for the following site and username.

    https://youarethescene.net

    Username: admin

    To reset your password visit the following address, otherwise just ignore this email
    and nothing will happen.

    My username to log into the site is “ADMIN” but I never once requested to change my password whats going on! anyone know why? I have 2 other admins thats it, and I do trust them both.

    Is there a back door hack or something?

    https://i39.tinypic.com/2ds33h3.jpg

    Thanks

Viewing 8 replies - 1 through 8 (of 8 total)

  • What version are you using? This was a problem before where a random hacker could do that but it was fixed in 2.9.2.

    Another thing you can do is create a user with all privileges then delete the admin user. This makes one more step for hackers.
    https://www.dailyblogtips.com/wordpress-security-tip-remove-the-admin-user/

    Thread Starter YOUAREtehSCENE

    (@youaretehscene)

    I’m using
    Version 2.9.2

    Umm…
    I didn’t click on the link for the reset cause i didn’t know what it would have done. but that is the updated version of the wordpress right? cause if not i didn’t get a notification saying that there was a new one

    Yes, 2.9.2 is the latest version. Yes, you can just ignore the reset email.

    I am not sure why your link goes directly to your login page? Is this a private blog plugin?

    Thread Starter YOUAREtehSCENE

    (@youaretehscene)

    Yes, its private
    Why do you ask?

    I just wondered why I was directed to the login page immediately.

    If you are using a plugin for the blog to be private, then maybe check if any others have had any issues with this password change email request. Like I said, this was a past known problem in WordPress that was fixed, but perhaps this plugin was not.

    I am really just guessing to see if I can help at all.

    Thread Starter YOUAREtehSCENE

    (@youaretehscene)

    Naw its rad dude. any help would be great.. but I actually changed my password today to make it longer and tougher.

    Anyone could be the admin, if someone else attempts to login as you and fails they can ask to have a password reset sent, the catch is that it’s sent to your address.

    My guess, someone thought it would be funny and lock you out by requesting a reset, or someone attempted a hack that was suppose to reassign the admin email address, again failing in the process.

    Like the email says, ignore it if you didn’t make this request (the request for a password reset, in and of itself is harmless).

    Thread Starter YOUAREtehSCENE

    (@youaretehscene)

    I asked my 2 admins they both said nope they didn’t asked my editor but I don’t think he has priv to gain access to anything much. so it has to be one of my 2 other admins.one she has bi polar and is nuts sometimes you can never tell with her day by day weather she’s in a good or pissy mood kinda scares me but my other admin known him for a few years he’s alright. but whom. very interesting and odd.

    but, yeah when i first installed word press i had it go to admin as user name

    https://i42.tinypic.com/2vuahk4.jpg
    https://i41.tinypic.com/2iu43tk.jpg

Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘Concern Of Having My Login / Pass Breached?’ is closed to new replies.