Wordpress Themes - WP Forum at BFA
There will be no more development for Atahualpa (or any other theme), and no support. Also no new registrations. I turned off the donation system. I may turn the forum to read only if it gets abused for spam. Unfortunately I have no time for the forum or the themes. Thanks a lot to the people who helped in all these years, especially Larry and of course: Paul. Take care and stay healthy -- Flynn, Atahualpa developer, Sep 2021

Wordpress Themes - WP Forum at BFA » Running WordPress » Installing & running WordPress »

Large-scale brute force attack on WP sites going on now


  #1  
Old Feb 10, 2014, 12:00 PM
paulae's Avatar
paulae
 
1,333 posts · Feb 2009
Wordpress 3.4.1, Atahualpa 3.7.7
I use the Wordfence security plugin on my sites, and just received this email from Wordfence, after getting alerts all morning via email about multiple attempts to login to the admin area with false usernames:

As of 11am eastern time this morning we are monitoring the largest distributed brute force attack on WordPress installations that we've seen to date. The real-time attack map on www.wordfence.com became so busy that we've had to throttle the amount of traffic we show down to 4% of actual traffic.

A brute force attack is when an attacker tries many times to guess your username password combination by repeatedly sending login attempts. A distributed brute force attack is when an attacker uses a large number of machines spread around the internet to do this in order to circumvent any blocking mechanisms you have in place.

If you're using the free or paid version of Wordfence you should have the option to "Participate in the real-time Wordfence security network" under 'Other options' enabled. This will immediately block any attack originating from an IP address that has attacked other WordPress sites using Wordfence. This is an effective defense against this kind of attack.

We recommend that until this passes you monitor your WordPress websites closely for unusual activity including logins, account creation or changes to the public facing website.

Bookmarks

Tags
brute force attacks, security, wordfence



Similar Threads
Thread Thread Starter Forum Replies Last Post
Force Sidebar on Page Template Masselyn Sidebars & Widgets 1 Nov 12, 2013 08:43 AM
Hack Attack and FileZilla rickheck New Versions, & Updating 1 May 28, 2012 06:39 PM
Paragraphs keep running together, how to add a force return jen_bville Atahualpa 3 Wordpress theme 1 Mar 6, 2012 05:16 PM
Force Full Content on Posts Page joshsweiss Center area post/pages 5 Jun 3, 2010 02:14 PM
[SOLVED] WordPress Firewall has detected and blocked a potential attack! Craig Mattice Atahualpa 3 Wordpress theme 0 May 5, 2009 04:59 PM


All times are GMT -6. The time now is 04:56 PM.


Powered by vBulletin® Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.