WP Hacking Attempts
Hi,
It seems the intrusion attempts to my WP sites are on the increase, manifold.
Most of the IPs are coming from East Europe including Russia. The rest are from all over Western Europe, North Africa, South America, India, Pakistan and the USA. Strangely, very few attacks from China and none from Indonesia, Thailand, Malaysia, Singapore, Phillipines and Australia.
During the prolonged attacks, the IPs never changed. Some even attacked using the same IPs for over 400 times. If I let them be, I bet it will go on thousands of times from the same IPs before I put a stop to it.
As though they are using applications hidden somewhere in their web servers, without their Hosting Providers' knowledge. Some of the IPs are already blacklisted in major spam databases, yet they can still carry on. Are their ISPs so ignorant or sheer negligence? Or are their Hosting Providers and ISPs collaborating for some sort of amusement?
It must be a new game to them. Most of the time, they try Brute Force using username "admin" or "Admin". That's kiddy stuff for kiddy WP webmasters still using "admin" for admin roles.
But lately, intruders became even more determined and dangerous. They started to brute force using custom admin names. They will guess admin users based on domain names, user post names, names extracted from About Me pages and even unique names familiar only to local cultures. These vile intruders are doing more homework at google, fb search and whois.
I think it is time to put another layer of protection over the network to our sites, other than the predictable and mechanical WP security plugins.
Seeking your advice and opinion.
It seems the intrusion attempts to my WP sites are on the increase, manifold.
Most of the IPs are coming from East Europe including Russia. The rest are from all over Western Europe, North Africa, South America, India, Pakistan and the USA. Strangely, very few attacks from China and none from Indonesia, Thailand, Malaysia, Singapore, Phillipines and Australia.
During the prolonged attacks, the IPs never changed. Some even attacked using the same IPs for over 400 times. If I let them be, I bet it will go on thousands of times from the same IPs before I put a stop to it.
As though they are using applications hidden somewhere in their web servers, without their Hosting Providers' knowledge. Some of the IPs are already blacklisted in major spam databases, yet they can still carry on. Are their ISPs so ignorant or sheer negligence? Or are their Hosting Providers and ISPs collaborating for some sort of amusement?
It must be a new game to them. Most of the time, they try Brute Force using username "admin" or "Admin". That's kiddy stuff for kiddy WP webmasters still using "admin" for admin roles.
But lately, intruders became even more determined and dangerous. They started to brute force using custom admin names. They will guess admin users based on domain names, user post names, names extracted from About Me pages and even unique names familiar only to local cultures. These vile intruders are doing more homework at google, fb search and whois.
I think it is time to put another layer of protection over the network to our sites, other than the predictable and mechanical WP security plugins.
Seeking your advice and opinion.
.
➨ Here's How to Make Your First $177 Online
This Week Using the Piggyback Method...
.
|~| VeeroTech Hosting - sales @ veerotech.net
|~| High Performance CloudLinux & LiteSpeed Powered Web Hosting
|~| cPanel & WHM - Softaculous - Website Builder - R1Soft - SpamExperts
|~| Visit us @veerotech Facebook - Twitter - LinkedIn