Recently I am getting a lot of unwanted content posted on my site, apparently by my account, the posts show up with dates from 2021, I have tried to change all passwords, disable ssh/FTP, enable 2FA, and recaptcha, but those posts keep showing. This has caused me to lose my AdSense account, what else can I do to prevent this?
are all your plugins up to date? have you installed any ‘nulled’ plugins that you downloaded online?
if you’re using a vps or have root/shell access, are you keeping that instance up to date as well?
it sounds like the wordpress install may have been hacked. especially if it’s injecting posts that have resulted in you losing your adsense account