WordPress.org

Forums

Activity Log
[resolved] "wrong password" entries (3 posts)

  1. brpubs
    Member
    Posted 1 year ago #

    Over the last two weeks, I've started seeing entries in the activity log that concern me. Attempted log-ins appear that are labeled as "Wrong Password' in the action column -- but the description column actually has a real username. Always before, I'd just seen those entries show up with trial-and-error usernames like "manager" or "admin."

    Does this mean that the username is compromised? It's not one that should be an obvious guess. But it's also clearly not log-in attempts by the actual user, since the ip addresses (there are several) do not match the actual user's address.

    Is this cause for concern? There aren't a huge number of these -- maybe a dozen in as many days -- but I wasn't sure what it meant. Is there some reason other than a compromised username that an actual username might show up in the description field accompanying unauthorized attempts to log in?

    Thanks --

    https://wordpress.org/plugins/aryo-activity-log/

  2. Yakir Sitbon
    Member
    Plugin Author

    Posted 1 year ago #

    Hey @brpubs

    You are under spam attack with multiple computers in your website. Please make sure you have strong password.

    Best,
    Yakir

  3. brpubs
    Member
    Posted 1 year ago #

    OK, thanks for the quick response!

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.