From securityboulevard.com
You must have noticed that WordPress stores your password so that you don’t have to type it out every time you want to log in?
It makes logging into your website a fast and easy experience.
But you might be wondering if the stored password can be stolen?
Unfortunately, the answer is yes. Stored passwords can be stolen.
When hackers get their hands on your password, they will use it to break into your site and wreak havoc. They can run all sorts of malicious activities like redirecting your visitors and stealing information from your website, sending spam email, storing files and folders on your website, even launching attacks on other WordPress sites.