Trusted WordPress tutorials, when you need them most.
Beginner’s Guide to WordPress
25 Million+
Websites using our plugins
Years of WordPress experience
WordPress tutorials
by experts

How to Prevent Imposter Comments in WordPress

Editorial Note: We earn a commission from partner links on WPBeginner. Commissions do not affect our editors' opinions or evaluations. Learn more about Editorial Process.

One of the issues we started noticing on our site was a group of spammers were commenting using our registered user’s username and email. It’s fairly easy to find both specially if a person has exchanged emails with you. This allowed a random user to comment using a registered user’s name. So it might look like that “Syed Balkhi” was commenting, when it was an imposter. In this article, we will show you how to prevent imposters from commenting in WordPress.

Video Tutorial

Subscribe to WPBeginner

If you don’t like the video or need more instructions, then continue reading.

All you have to do is install and activate this plugin called Impostercide. That’s it. Now the plugin is working.

It will prevent all unauthenticated users from “signing” a comment with a registered users email address or username.

For those who don’t know why this is important, here is a small explanation. Normally a new user’s comment awaits moderation vs. registered user’s comments go through without requiring any approval. An spammer can then use the registered user’s username or email address in the comments to get the same gravatar and add a link in your comments. For high traffic sites, the moderator might even miss it by accident because the avatar looks familiar. It is extremely disguising for users of the site as well.

With this plugin, when an imposter tries to do this, they will be shown a screen like this:

“The name provided (XYZ) belongs to a registered user. Please login to make your comment.”

This plugin doesn’t add any bloated code to your site. It is a simple plugin that just works. Get Impostercide plugin for WordPress.

Disclosure: Our content is reader-supported. This means if you click on some of our links, then we may earn a commission. See how WPBeginner is funded, why it matters, and how you can support us. Here's our editorial process.

Editorial Staff

Editorial Staff at WPBeginner is a team of WordPress experts led by Syed Balkhi with over 16 years of experience in WordPress, Web Hosting, eCommerce, SEO, and Marketing. Started in 2009, WPBeginner is now the largest free WordPress resource site in the industry and is often referred to as the Wikipedia for WordPress.

The Ultimate WordPress Toolkit

Get FREE access to our toolkit - a collection of WordPress related products and resources that every professional should have!

Reader Interactions

6 CommentsLeave a Reply

  1. Syed Balkhi says

    Hey WPBeginner readers,
    Did you know you can win exciting prizes by commenting on WPBeginner?
    Every month, our top blog commenters will win HUGE rewards, including premium WordPress plugin licenses and cash prizes.
    You can get more details about the contest from here.
    Start sharing your thoughts below to stand a chance to win!

  2. Brad Dalton says

    Good tip however you should always check this box in your Discussion settings as well:

    ‘An administrator must always approve the comment ‘

    P.S How about approving comments you don’t agree with?

  3. Ryan Hellyer says

    Many anti-spam plugins will block this type of attack too since the imposters typically use bots to post the comments.

Leave A Reply

Thanks for choosing to leave a comment. Please keep in mind that all comments are moderated according to our comment policy, and your email address will NOT be published. Please Do NOT use keywords in the name field. Let's have a personal and meaningful conversation.