A lockdown event has occurred due to too many failed login attempts

  • Resolved mariodobre

    (@mariodobre)


    2 years, 8 months ago

    Hi,

    Our client has been victim of some brute force attacks on the wordpress login and as a security measure we have restricted access to wp-login page.

    So now when you access wp-login page from a different IP it is forbidden.

    All seems good however we are still receiving information that we are still under brute force attack:

    “A lockdown event has occurred due to too many failed login attempts or invalid username”

    Since you cannot access the wp-login page, my question is: Is there another way to access the admin area that I do not know about. How are they still able to attack?

    Any advice/ideas would be greatly appreciated.

    Thank you,

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support vupdraft

    (@vupdraft)

    Hi,

    It’s possible that the reason you are still getting attacks is because the attackers are targeting your xmlrpc.php file. This file can be found in the WordPress root directory of your site. Enabling one of the following features can help you reduce or stop further login attempts.

    Go to WP Security -> Firewall -> Basic Firewall Rules and enable one of the following security options

    Completely Block Access To XMLRPC:
    Disable Pingback Functionality From XMLRPC:`

    Thread Starter mariodobre

    (@mariodobre)

    Hello and thanks a lot for the speedy answer. I will look into it.

    All best,
    Mario

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘A lockdown event has occurred due to too many failed login attempts’ is closed to new replies.