I have been having the same issue and I think my site has been slow and sluggish because of it! I do use the Wordfence plug-in, which blocks them all immediately, but it certainly is unnerving and it has been going on for at least two weeks, maybe more. Just spoke to Bluehost and was told there’s nothing else that can be done, but they will stop eventually. Hopefully soon! Does anyone else have any advice or suggestions?
But, it’s been going on for so long! In the past, these attacks only lasted for a few days.
In Wordfence wp-admin/admin.php?page=WordfenceSecOpt there is a very nice option…
“Immediately block the IP of users who try to sign in as these usernames“
Most of the brute force attacks are targeting “admin” as a username.
Best practice says “DO NOT use admin as a username”.
Oh yes, they get blocked immediately, but I can see exactly how many they are and how often this happens (several times a day for more than two weeks). I added many other other usernames to the list as well. My issue is, this attack is slowing down the site. Is there no way to stop them from even making the attempt? According to Bluehost, there isn’t.
@debbie, I think this document can help you http://codex.wordpress.org/Brute_Force_Attacks.
Or you could use http://cloudproxy.sucuri.net/ (btw I am not affiliate of any kind with Sucuri).
i wrote a small program for those who have WP fail2ban installed.
It collects the needed data for sending it to the ISP.
Im doing this every month with the three most spamming ISP.
https://github.com/Herschdorfer/jAbuseReport
