Bad login attempts despite changing/hiding admin pages

  • Hi. After installing this plug-in on a site the first time with basic security changes, it was interesting to see how often people/bots just drop by and try to log-in. I then took further steps (with that site and all those I manage) and hid the admin areas to something rather unique, and those attempted log-ins stopped.

    However now IP addresses in Lithuania and Latvia are appearing in my logs for ‘bad login attempts’. Is this suggesting something is compromised?

    https://www.ads-software.com/plugins/better-wp-security/

Viewing 1 replies (of 1 total)
  • iwriteblogs

    (@iwriteblogs)

    If you change the login URL again, do the bad logins temporarily stop again? That will let you know whether they actually have a way to see what you change it to, or whether they are using a script to “guess” your login page URL.

Viewing 1 replies (of 1 total)
  • The topic ‘Bad login attempts despite changing/hiding admin pages’ is closed to new replies.