Support » Plugin: Wordfence Security - Firewall, Malware Scan, and Login Security » Multiple attempts with the username "feed".

  • Resolved setablaze777

    (@setablaze777)


    Just wondering if anyone can shine a light on something I’ve been seeing. I use Wordfence to protect one of my sites. For the last month, I’ve had IPs from all over the world trying to log in with the username “feed”. There has been over 200 attempts. This isn’t a username I’ve ever used, so I’m not super worried that someone will gain access to the site. I have the username set to be blocked immediately, but I just have to wonder if there’s some kind of security hole with “feed”. If not, why are so many trying to use it?

    https://wordpress.org/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • Plugin Author WFMattR

    (@wfmattr)

    I have seen this sometimes too, and I’ve seen other usernames that aren’t related to a particular site, as well. The user “feed” doesn’t have any special meaning in WordPress, but it’s possible there is a plugin that would create it, on sites that use it.

    It is may be malicious bots that aren’t specifically targeting WordPress. Some seem to just find login forms in general, and they may blindly try a bunch of common usernames for any system, not knowing what type of site they’re even attacking.

    Using the option to block them immediately was a good choice, since that would prevent them from also trying other usernames afterward, which might exist. Let us know if you have any other questions!

    -Matt R

Viewing 1 replies (of 1 total)
  • The topic ‘Multiple attempts with the username "feed".’ is closed to new replies.