Thursday, March 6th, 2014 - Written by Edward - Filed Under Blog
Another large distributed attack on WordPress sites appears to be underway according to the good folks over at WordFence. The peak reached 40,000 attacks per minute earlier but now looks to be around 30,000. For comparison purposes, this more than a ten-fold increase over “usual” activity.
I personally have been issues with brute-forcers lately as well, and it hasn’t really subsided between the last large-scale attack and this one.
Site owners should not ignore this threat, but should take some time to harden their WordPress sites. Sites with the default “admin” user name are at a much-increased risk, and should take steps to fix this immediately.