rpdom wrote: ↑
Wed Oct 09, 2019 6:49 am
How is your Pi connected to the internet? Does it have a direct connection or is it through a router?
Did you change the "pi" user password BEFORE connecting it to the internet? If not, it has been compromised and you should pull the plug on it right now! Overwrite the SD card with the current Raspbian Buster, then boot the Pi up again and change the password
The reason being that everyone and his spider knows the "pi" password is "raspberry" and lots of bad people have "bots" set to scan anything connected to the internet (without a firewall or router in the way*) to see if they can log in as "pi". When they do log in they install software to either spread viruses or to try and make them money by harvesting bitcoins or whatever. They don't care if it is a bit slow - they aren't paying for the electricity - you are!
*also, if you have set up port forwarding to allow remote connections.
Well, I didn't expose it to the internet. It's visible only inside my local lan as it's connected to my router.
And yes, I remember that I changed it pretty soon after I connected it to the router (so it wasn't exposed to the internet, not directly anyway).