Brute force question

Viewing 2 replies - 1 through 2 (of 2 total)
  • WFSupport

    (@wfsupport)

    11 years, 5 months ago

    Hi

    Do you have a login for the site? What is the login name and the display name? On some of the commercial sites I manage I saw this happening too. I got tons of random generated names (interesting combinations sometimes too!) but then started to see a trend of real login names being used. I tracked it back to the authors not changing their display names. What clued me in even more was that my admin username (not admin) was used as well. Its not anywhere near what I would think a standard admin username would be. Then I figured out the display name thing. Even though I had never posted on the site, the hackers were able to get it. I changed all the display names including my own, and the problem disappeared. I’d suggest starting with your display name and seeing if that fixes the issue. Of course, they might already have that but I’m betting its a bot that won’t know better.

    tim

    kristystnh

    (@kristystnh)

    11 years, 5 months ago

    My situation is a little different, but I did discover a couple of .png files (listed as “added” by the Sucuri plugin) and one of these files contained my username, an old password, and my IP address (I was able to read the file code using Wordfence).

    Something to consider for your situation.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Brute force question’ is closed to new replies.