Internet security analysts are saying that a massive number of computers have been commandeered in an effort to take over WordPress servers. Some are warning that the attack may be the beginning of a massive ‘botnet’ attack.
If you are a user of WordPress, you might want to check that password. Internet security analysts are saying that a massive botnet attack is targeting the popular blogging site. Currently it is not known who is behind the attack, but there are literally tens of thousand of computers being used in the attack.
“The attacker is brute force attacking the WordPress administrative portals, using the username ‘admin’ and trying thousands of passwords. It appears a botnet is being used to launch the attack and more than tens of thousands of unique IP addresses have been recorded attempting to hack WordPress installs,” Matthew Prince writes in a blog posting for CloudFlare.
Prince stressed that if hackers can take over WordPress servers, they can do far more damage than a common DDoS attack since WordPress operates on servers with larger network connections.
The best way in preventing your WordPress account from being stolen is by using a stronger password. There are also plugins available that would limit the number of login attempts on your account. Another security measure would be to get rid of the standard ‘admin’ username and change it to something less ordinary.