As I type these words, there is an on-going and highly-distributed, global attack on WordPress installations across virtually every web host in existence. This attack is well organized and again very, very distributed; we have seen over 90,000 IP addresses involved in this attack.
HostGator Blog – Global WordPress Force Flood
Go and read the post above and then take action. I had installed Better WP Security about 3-4 weeks ago and forgotten about it. After reading that article, I decided to double-check my setting, improved on some stuff and checked the logs. To my surprise, I found out that I had 9222 404 errors! Apparently that is the way bad boys search for vulnerabilities and ways to break in.
If your blog is not secured or you suspect you may want to beef it up, do give Better WP Security a try. It install easy and the settings are explained. If you find it complicated or you are unsure, find something else, but get your blog secured.
weird, who actually cares about hijacking wordpress blogs? guess people ain’t got nothing better to do.
It is a mixture of “I get insulted by anything” with technical ability to create arseholes.
I’m getting attempts, but it’ll be a cold day in hell before they guess my password, even with a dictionary attack. Of course, I host other blogs I need to check on, but I’m pretty sure they are OK too.
yeah reminds me. I should probably update the password on my blog, just to be on the safe side. not that mine is wordpress
I posted the link from Gator on my facebook page to spread the word