Is this lockout notification a hack/scam/phishing/security risk?

  • I got the email copied below. Have I been hacked?

    This is disturbing because the locked out username is my own, a secondary ‘test’ account that I set up purely for learning Worpress stuff (with its own separate Gmail account) and AFAIK the name doesn’t appear publicly anywhere online. I use it for things like figuring out how author accounts work but I never actually make posts etc. using it (I just delete them.)

    – The return address is my own main email address, same as the address it was sent to – not the address connected with this ‘test’ user

    – In the full message header the only email address is my own (again – not the test account), and some other one at my web host

    – under Dashboard > WP Security > Locked IP Addresses it says “There are no IP addresses currently locked out” – which completely contradicts the email.

    ———————————————–

    A lockdown event has occurred due to too many failed login attempts or invalid username:
    Username: [here it has my ‘test’ username discussed above]

    IP Address: 103.27.127.238
    IP Range: 103.27.127.*

    Log into your site’s WordPress administration panel to see the duration of the lockout or to unlock the user.

    —————————————–

Viewing 4 replies - 1 through 4 (of 4 total)
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Is this lockout notification a hack/scam/phishing/security risk?’ is closed to new replies.