Brute Force on Lost Password

  • Resolved klloyd86

    (@klloyd86)


    2 years ago

    Hi there, we are having some trouble with lost password requests / brute force attempts.

    The problem is although we have re-captcha in place and have blocked the particular user names (as email addresses) (seems to be around 5 constantly) Although the IPS are temporarily blocked I would have assumed the usernames would mean a block instantly?

    We are having now around 600 block counts from German IP addresses in the last 24 hours it really seems to have ramped up? The usernames used are not real accounts – its just constant (72 in one day)

    I have upped the brute force setting stop 2 attempts on lost password, and blocked those usernames, but it looks like is being targeted as this morning there were new usernames being tested

    Any help much appreciated

Viewing 1 replies (of 1 total)
  • Plugin Support wfmargaret

    (@wfmargaret)

    2 years ago

    Hi @klloyd86,

    Thanks for reaching out.  Any usernames you add under Wordfence > All Options > Firewall Options > Brute Force Protection > Immediately block the IP of users who try to sign in as these usernames will immediately block the IP address attempting to log in, provided they aren’t actual usernames in use on the site.  You can read our documentation on this option here: https://www.wordfence.com/help/firewall/brute-force/#lockout-usernames 

    Enabling 2FA (at least on admin accounts), and reCAPTCHA are our (and WordPress’) recommendations for best practices in securing your website from a possible security breach.  Wordfence, as an endpoint firewall, cannot stop a bot or human from trying to visit and/or log in to your website altogether, but rather deal with the visits appropriately based on your settings when they happen.  While it’s alarming to see these attacks, there’s nothing more for you to do since Wordfence is already blocking these attempts.  

    I hope this is helpful. In case you have any further questions, please feel free to reach out to us.

    Thanks,
    Margaret

Viewing 1 replies (of 1 total)

The topic ‘Brute Force on Lost Password’ is closed to new replies.