Your account security is a partnership between you and Nixzoehost. While our firewalls and monitoring systems block thousands of automated attacks every day, "Unauthorized Activity" often happens through subtle social engineering or compromised personal devices.
Recognizing the early warning signs of an account breach is the best way to prevent data loss or website defacement.
Recognizing Unauthorized Activity
If someone gains access to your Nixzoehost Client Area, they could potentially change your website files, redirect your domains, or access your billing information. Use this guide to identify "red flags" and learn the immediate steps to take if your account is compromised.
1. Common Warning Signs
Watch for these indicators that someone else may be using your account:
-
Login Notifications: You receive a "New Login Detected" email for a location, IP address, or device you don't recognize.
-
Unexplained Changes: You notice your contact email, phone number, or nameservers have been modified without your input.
-
Failed Login Alerts: You receive multiple emails about failed login attempts that you did not initiate.
-
Mysterious Invoices: New services appear in your account, or you see "Unrecognized Charges" on your credit card statement.
-
Website Behavior: Your WordPress site suddenly redirects to a different URL or shows content you didn't publish.
2. Using the Login History Tool
The best way to verify activity is to check your audit trail.
-
Log in to your Client Area.
-
Navigate to Hello, [Name]! > Security Settings.
-
Scroll to the bottom to view the Recent Login History.
-
Check the IP Address and Location columns. If you see an entry from a different country while you were at home, your password may be compromised.
3. Immediate "Emergency" Steps
If you suspect your account has been accessed by someone else, perform these four steps in order:
-
Change Your Password: Create a new, complex password immediately.
-
Revoke Trusted Devices: In Security Settings, click "Deauthorize All Devices" to force everyone (including the intruder) out of the account.
-
Enable/Reset 2FA: If 2FA was off, turn it on. If it was on, disable and re-enable it to generate a new secret key.
-
Contact Nixzoe Support: Open a High Priority ticket. Our security team will audit your account for "backdoors"hidden secondary users or malicious files the intruder may have left behind.
Red Flag Checklist
| Red Flag | Risk Level | Recommended Action |
| Email Change Notification | CRITICAL | Contact support immediately; this is a common "Account Takeover" tactic. |
| Unrecognized IP in History | HIGH | Change password and Revoke all Trusted Devices. |
| New API Keys Created | HIGH | Delete the keys and check your WordPress file integrity. |
| Marketing Emails in New Language | MEDIUM | Check if your "Language" or "Country" setting was changed. |
How Nixzoehost Protects You
We don't just wait for you to notice a problem. Our system automatically:
-
Blocks IPs after too many failed attempts.
-
Sends Email Alerts every time a login occurs from a new device or browser.
-
Flags Suspicious Orders: If a purchase looks fraudulent, our billing team manually holds the order for verification.
Nixzoehost Security Rule: We will never ask you for your password via email or social media. If you receive a message asking for your login details to "verify your account," it is a phishing attempt. Please report it to us immediately.