Massive Botnet Attack on WordPress Websites


There’s been a massive attack originating from a botnet of about 90,000 IPs that targets WordPress installations all over the internet, regardless of the host being used. The attack brute forces the admin password of a WordPress installation and installs a backdoor, presumably for a later attack. CloudFlare says it has blocked 60 million requests against this attack. And that’s just one hosting provider, so you can imagine the extent of the attack.

Attack such as this uses infected PCs but once the botnet has a huge number of hacked websites it could do a lot more damage.

It’s difficult to protect a website from brute force attacks such as this, but for starters you can use a more complicated password for your WordPress site.

Leave a Reply

© 2017 Ask the Geek. All rights reserved.