WordPress Users; Check Your Registered User List
I recently got an email saying that I had a new user register here. Out of curiosity, I checked who it was, but neither the name nor the email was familiar to me. The username was alina77vere9uk and the email alina77vere@gmail.com, which to me looked like the kind of email address that you’d see on a SPAM email, so I tossed it into Google to see what I’d find.
Sure enough, I’m not the only person who’s had this user register. As pointed out over at the Cubelodyte’s lair, this is mot likely a bot that is registering on Wordpess blogs all over the Internet, and while it’s not posting any comments, it’s highly likely that it’ll release some kind of SPAM payload at a later date. So, if you see this user register on your WordPress blog, go ahead and delete them before then SPAM hits the fan.
2 responses to "WordPress Users; Check Your Registered User List"
I really don’t understand why people delete the account. I came up with what I think is a better solutionthen just deleting the account.
1. I changed the password for that account.
2. I made it so the user doesn’t even have read rights. Thanks Role Manager.
3. I changed almost everything about the user to indicate it is a spam account.
4. I disabled the forgot password feature. Thanks WP-IDS.
That’s actually a really good idea; keep the account active but disable it. That way the user can’t be re-created. I guess I was a little hasty about it. Oh well.
Also, sorry this comment sat in the SPAM queue for so long (released today, almost 2 moths after it was made), I didn’t expect anyone to find or comment on anything here. Thanks for stopping by!