Big bot attack on Wordpress sites
Approximately since August 2, there has been a massive attack on sites built on Wordpress engines (according to some sources, sites on Joomla, DLE are also being attacked). The attackers with the help of a large botnet try to find passwords to the admin with the help of brute force. Some servers do not handle the load. Hosters take various measures to filter bots. Extensive discussion goes on the Searchengines forum .
Wordpress offers its own solutions: codex.wordpress.org/Brute_Force_Attacks
In the logs on the server it looks like something like this:
')
As an option, you should make sure that the admin password to the site is stable for selection.
Wordpress offers its own solutions: codex.wordpress.org/Brute_Force_Attacks
In the logs on the server it looks like something like this:
93.73.186.55 funshow.ru POST /wp-login.php HTTP/1.0
178.223.136.215 funshow.ru POST /wp-login.php HTTP/1.0
178.68.139.101 funshow.ru POST /wp-login.php HTTP/1.0
99.162.150.102 funshow.ru POST /wp-login.php HTTP/1.0
')
As an option, you should make sure that the admin password to the site is stable for selection.
Source: https://habr.com/ru/post/188932/
All Articles