- This topic is empty.
-
Posts
-
Some clown has been trying to hack into one of my wp sites all day. Luckily, I have several security plugins installed. If you run a WP site, you might want to consider getting the following plugin:
Limit Login Attempts
WordPress › Limit Login AttemptsIt’s brilliant. The would be hacker keeps trying to hack into my site via different IP addresses, and the plugin keeps banning the IP addresses of all the failed login attempts.
Here’s a record of the IP addresses that were banned TODAY.
174.142.210.218 admin (1 lockout)
5.9.81.50 admin (1 lockout)
174.120.181.179 admin (1 lockout)
194.38.104.59 admin (1 lockout)
173.166.75.217 admin (1 lockout)
178.63.53.21 admin (1 lockout)
89.223.49.163 admin (1 lockout)
89.44.47.203 admin (1 lockout)
176.9.43.178 admin (1 lockout)
193.33.186.241 admin (1 lockout)
176.31.234.69 admin (1 lockout)
178.157.80.11 admin (1 lockout)
115.68.15.54 admin (1 lockout)
85.31.96.201 admin (1 lockout)
69.64.68.159 admin (1 lockout)
70.32.114.50 admin (1 lockout)
93.186.115.18 admin (1 lockout)
37.59.134.60 admin (1 lockout)
87.106.133.227 admin (1 lockout)
94.23.27.29 admin (1 lockout)
174.121.83.162 admin (1 lockout)
188.95.251.2 admin (1 lockout)
95.173.186.127 admin (1 lockout)
69.60.24.170 admin (1 lockout)
50.28.21.75 admin (1 lockout)
108.179.218.220 admin (1 lockout)
70.32.92.169 admin (1 lockout)
66.154.54.43 admin (1 lockout)
84.19.186.238 admin (1 lockout)
212.178.198.80 admin (1 lockout)
93.114.43.144 admin (1 lockout)
50.57.174.146 admin (1 lockout)
184.107.237.66 admin (1 lockout)
173.231.52.246 admin (1 lockout)
5.9.240.238 admin (1 lockout)
46.17.97.28 admin (1 lockout)
209.191.186.199 admin (1 lockout)
82.194.82.102 admin (1 lockout)
118.69.198.230 admin (1 lockout)
67.205.107.173 admin (1 lockout)
195.16.88.174 admin (1 lockout)
46.252.193.47 admin (1 lockout)
178.255.225.89 admin (1 lockout)
69.41.174.38 admin (1 lockout)
85.214.45.181 admin (1 lockout)
188.132.179.34 admin (1 lockout)
46.32.226.96 admin (1 lockout)
206.126.97.12 admin (1 lockout)Anyway, I don’t think that this would be hacker will be able to crack my password. I just wanted to recommend this brilliant plugin to anyone running a WP site.
Over 24 hours later, and he is still trying to hack in
I could think of much better things that I’d rather be doing with my time. Unreal!Thanks for the heads up OZ
I’ve recently installed Wordfence and I must say this is the best security plugin I’ve ever used.
WordPress › Wordfence Security
Wordfence Security is a free enterprise class security plugin that includes a firewall, virus scanning, real-time traffic with geolocation and more.
If protecting your WP from hackers, script kiddies, misbehaving bots, undesirable crawlers etc etc is important to you, check this plugin out, I highly recommend it!
It even identifies and automatically bans fake google bots
@LandofOz 248120 wrote:
Some clown has been trying to hack into one of my wp sites all day. Luckily, I have several security plugins installed. If you run a WP site, you might want to consider getting the following plugin:
Limit Login Attempts
WordPress › Limit Login AttemptsIt’s brilliant. The would be hacker keeps trying to hack into my site via different IP addresses, and the plugin keeps banning the IP addresses of all the failed login attempts.
Thats a lot of attempts!
If thats what has come in today, it looks like he is using a script, and is trying to brute force his way into your admin, and running the script through proxies(hence the number of diff IPs).
Wouldn’t surprise me if the idiot is doing this to multiple blogs.
@Rak 248267 wrote:
it looks like he is using a script, and is trying to brute force his way into your admin, and running the script through proxies(hence the number of diff IPs).
Really:sarcasm: I think that’s pretty obvious.
Unless those IP’s are from monkeys on PC’s he got hacking the site too :tounge2:@AussieDave 248272 wrote:
those IP’s are from monkeys on PC’s he got hacking the site too :tounge2:
now other week I learned that monkeys can do off page seo and now I learned monkeys can hack also !
dam where do I find bannana tree seeds so I can grow my own to pay all the monkeys?:shhh::lookaroun@AussieDave 248272 wrote:
Really:sarcasm: I think that’s pretty obvious.
Maybe to you and me.. but not to everyone.
If your WordPress username is “admin” you should change it to something more secure. This article shows how easy it is using phpMyAdmin: How to Change your WordPress Username
NB! Always make a backup of your database before making changes.
@ixian 248284 wrote:
NB! Always make a backup of your database before making changes.
I also use wordfence and it notifies me when one of those A….holes has been locked out.
Besides backing up before making changes, you need one at all times if (or when) one of those d……heads does get it!
Hackers would make more money trying something legit – they are not really being smart. I get a bigger ‘thrill’ out of making money the right way!
@AussieDave 248247 wrote:
Thanks for the heads up OZ
I’ve recently installed Wordfence and I must say this is the best security plugin I’ve ever used.
WordPress › Wordfence Security
Wordfence Security is a free enterprise class security plugin that includes a firewall, virus scanning, real-time traffic with geolocation and more.
If protecting your WP from hackers, script kiddies, misbehaving bots, undesirable crawlers etc etc is important to you, check this plugin out, I highly recommend it!
It even identifies and automatically bans fake google bots
Excellent!! Thanks for the advice. I’ll check out WordFence today. He’s more or less given up trying to hack into it. Only about 5 attempts a day now.
