[Resolved] HELP!! Site getting hammered, same IP address
Hi .. I am reposting because I didn’t put this request directly into the LSS forum …
I am using Login Security Solution plugin. This morning I woke to almost 600 attempts to compromise a clients site via brute force. About 5 a minute.
All attempts are from the same IP. All password tried are VERY long and seem totally random. The passwords are so long and obscure that it would seem that none could possible work. No idea why they are using such PWs
Also they were not using Admin as login name but names related to the site. The username used changed a few times and then they eventually got a hold of the CORRECT username is quite obscure. HOW IS THAT EVEN POSSIBLE??
Also, using .htaccess in my wp-admin folder, I am blocking access to any IP address but three. HOW IS IT POSSIBLE that they can even attempt a login?
Finally, why is it that LSS is not blocking like it should by creating long delays.??
I currently have the site shut down so as to stop the attempts.
Any help would be appreciated.
- The topic ‘[Resolved] HELP!! Site getting hammered, same IP address’ is closed to new replies.