Replies: 0
Hi WordFence,
We use your Security Plugin and have been doing so for quite a few years now. We are using the Free Version. We have a problem that recently happened, and we are trying to figure out how it happened. Our website is not a site that people can log into so we have a minimum number of people we have given access to log in with Admin privileges, which would be 3 people and all 3 people are from the United States. Recently someone from India used one of the 3 users account to login, we felt compromised, so we immediately deleted the user account.
We are trying to sort out how this might have happened. We can see the IP of the India user – we can see which user account they used but we cannot see what PW they were able to login with.
We know what the original PW is we gave to each user account – it’s the one WordPress generates when it sets up a user – so it is a pretty strong PW.
In your Login Attempts you show Username, IP, Date and if we go look at Live Traffic, we can see a bit more info including Location. But we see no info as to what PW they used. Is there a way we can see the PW they used?
Any help would be appreciated as to how this might have happened.
Thank You,
Ruth
P.S. We did immediately put the India IP on the Firewall/Blocking section.