Global Bruteforce Attack on WordPress Installations

Currently, WordPress is experiencing a global brute force attack. This is not limited to us, but is affecting web hosts worldwide.

This attack is widespread and very vigorous. At this time, we suggest you log in to your WordPress account and change your password to a VERY strong password.

The attack is specific to WordPress installations at this time.

If you have been having any trouble with your WordPress today, you are likely vulnerable to more issues. If you have a Virtual Private Server or a Dedicated Server, your risk may be higher.

We are taking many proactive measures to mitigate this situation but the best defense starts with you. Please check your websites, your system and update your software. Change your WordPress password immediately. At this time, secure your WordPress installation and, as suggested update your passwords for all of your logins on a regular basis.

To ensure that your websites are secure and safeguarded from this attack, we recommend the following steps:

  1. Update and upgrade your wordpress installation and all installed plugins
  2. Install the security plugin listed here
  3. Ensure that your admin password is secure and preferably randomly generated
  4. Other ways of Hardening a WordPress installation are shared at

These additional steps can be taken to further secure wordpress websites:

  • Disable DROP command for the DB_USER .This is never commonly needed for any purpose in a wordpress setup
  • Remove README and license files (important) since this exposes version information
  • Move wp-config.php to one directory level up, and change its permission to 400
  • Prevent world reading of the htaccess file
  • Restrict access to wp-admin only to specific IPs
  • A few more plugins – wp-security-scan, wordpress-firewall, ms-user-management, wp-maintenance-mode, ultimate-security-scanner, wordfence, These may help in several occasions

Thank you for assisting us in keeping your information safe and secure.

Comments are closed.