Yet another WordPress brute force attack | WordPress.org

tomdkat
(@tomdkat)

11 years, 5 months ago

Recently, I’ve seen a significant increase in brute force attack activity on a WordPress blog I administer. What’s different about this attack is the login attempts are coming from a wide variety of IP addresses, but mostly localized to one particular country.

So, I’ll see failed login attempts from IP addresses in the same class A network, but different CLASS B networks and sub-nets within. For example, I’ll see failed login attempts from:

nn.A.xxx.yyy
nn.B.www.vv
nn.A.bbb.cc
nn.C.xx.yyy

and so on. Also, it seems each IP address I see occurs only once, per failed login attempt.

Are others seeing similar attacks? I’ve been watching this for the past couple of weeks.

Thanks!

Peace…

Viewing 1 replies (of 1 total)

Moderator t-p
(@t-p)

11 years, 5 months ago

useful codex:

http://codex.wordpress.org/Brute_Force_Attacks
http://codex.wordpress.org/Hardening_WordPress

Viewing 1 replies (of 1 total)

The topic ‘Yet another WordPress brute force attack’ is closed to new replies.

In: Fixing WordPress
1 reply
2 participants
Last reply from: t-p
Last activity: 11 years, 5 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics