[ad_1]
[ad_2]
I have 2 websites for different industries. Someone keeps logging into my sites and creates user names like wp_update_125262. I have installed wordfence bit it doesn't seem to help. The anyone can register option is also turned off. How can I stop someone from creating these usernames or probably inserting some malicious code into my sites?
Check this post, might be of interest in this case:
[https://www.reddit.com/r/Wordpress/comments/1elpxin/important_notice_malware_through_invisible_plugin/](https://www.reddit.com/r/Wordpress/comments/1elpxin/important_notice_malware_through_invisible_plugin/)
Your site has been hacked – you have a vulnerability – most likely via an old or abandoned plugin. Audit your plugins (and theme), check the changelogs for each. Remove anything that hasn’t received an update in 9 months or more.
Run a scan with Wordfence – that will also highlight any major issues.
Wordfence is good, but it’s not enough for this specific issue.
Wordfence won’t find every php/css malware created by that vulnerability and you’ll need to manually clean your installation and db.
This might help https://wpappsec.org
The main issue is automated tools can find WordPress in seconds. Simply hide that you’re running WordPress and all issues are resolved. Use this plugin [Hide My WP Ghost – Security & Firewall](https://wordpress.org/plugins/hide-my-wp/), WordFence works but it bogs down shared servers and is rarely configured correctly. Be sure to read the [installation](https://wordpress.org/plugins/hide-my-wp/#installation) setup thoroughly.