Beginner's Guide for WordPress / Start your WordPress Blog in minutes

How to Prevent Imposter Comments in WordPress

One of the issues we started noticing on our site was a group of spammers were commenting using our registered user’s username and email. It’s fairly easy to find both specially if a person has exchanged emails with you. This allowed a random user to comment using a registered user’s name. So it might look like that “Syed Balkhi” was commenting, when it was an imposter. In this article, we will show you how to prevent imposters from commenting in WordPress.

Video Tutorial

Subscribe to WPBeginner

If you don’t like the video or need more instructions, then continue reading.

All you have to do is install and activate this plugin called Impostercide. That’s it. Now the plugin is working.

It will prevent all unauthenticated users from “signing” a comment with a registered users email address or username.

For those who don’t know why this is important, here is a small explanation. Normally a new user’s comment awaits moderation vs. registered user’s comments go through without requiring any approval. An spammer can then use the registered user’s username or email address in the comments to get the same gravatar and add a link in your comments. For high traffic sites, the moderator might even miss it by accident because the avatar looks familiar. It is extremely disguising for users of the site as well.

With this plugin, when an imposter tries to do this, they will be shown a screen like this:

“The name provided (XYZ) belongs to a registered user. Please login to make your comment.”

This plugin doesn’t add any bloated code to your site. It is a simple plugin that just works. Get Impostercide plugin for WordPress.

Disclosure: Our content is reader-supported. This means if you click on some of our links, then we may earn a commission. See how WPBeginner is funded, why it matters, and how you can support us. Here's our editorial process.

The Ultimate WordPress Toolkit

Get FREE access to our toolkit - a collection of WordPress related products and resources that every professional should have!

Reader Interactions

5 CommentsLeave a Reply

  1. Good tip however you should always check this box in your Discussion settings as well:

    ‘An administrator must always approve the comment ‘

    P.S How about approving comments you don’t agree with?

  2. Many anti-spam plugins will block this type of attack too since the imposters typically use bots to post the comments.

Leave A Reply

Thanks for choosing to leave a comment. Please keep in mind that all comments are moderated according to our comment policy, and your email address will NOT be published. Please Do NOT use keywords in the name field. Let's have a personal and meaningful conversation.