Getting Lots of Failed Login Attemps | WordPress.org

Resolved Rasel Khondokar
(@rasel-khondokar)

5 years, 1 month ago

Hi,
My website is “https://www.bookdesignerguru.com” I just installed Wordfence last night and my website is also new. I never shared my site to anywhere yet but don’t know how and from whom I am getting tons of failed login attempts. All attempts are coming from this URL “https://www.bookdesignerguru.com/wp-login.php?redirect_to=https%3A%2F%2Fwww.bookdesignerguru.com%2Fwp-admin%2F&reauth=1” and they failed login with username “admin” Getting this from different IP and Country but it’s hapenning almost 1 for every 1 minutes.

What’s wrong here? Can anyone please help me? My anohter site is completely fine and no failed login showing there like this.

Best Regards,
Rasel

The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)

wfdave
(@wfdave)

5 years, 1 month ago

Hi @rasel-khondokar,

It is normal for a site to start receiving some brute force attempts even if you haven’t shared its URL.

What I can recommend is changing around the Brute Force Protection settings:

1. Go to Wordfence -> All Options
2. Scroll down until you see Brute Force Protection
3. Change Lock out after how many login failures to a lower value (such as 3)
4. Click Save Changes in the top right corner

For example: https://i.imgur.com/RizWX2I.png

This should now block that IP address if it starts failing the login too many times.

Dave

Viewing 1 replies (of 1 total)

The topic ‘Getting Lots of Failed Login Attemps’ is closed to new replies.

In: Plugins
1 reply
2 participants
Last reply from: wfdave
Last activity: 5 years, 1 month ago
Status: resolved