WordPress Admin Password Being Changed/Hacked

  • I’ve had 2 blogs within the past few weeks that have had the admin password reported as “lost” and then changed. The blogs have then been defaced.

    I’m running WP 2.5, any ideas on how this is being done and what I can do to prevent it from happening again?

    Thanks in advance everyone…

Viewing 2 replies - 1 through 2 (of 2 total)

  • Have you upgraded to WP 2.5.1? The upgrade fixes and important vulnerability where an attacker could generate authentication cookies by registering a specially crafted username.

    Thread Starter blogdoc

    (@blogdoc)

    I have upgraded now, it occured when I was running 2.5

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘WordPress Admin Password Being Changed/Hacked’ is closed to new replies.