Hack attempt when it should not be possible

  • Hello.
    I have several websites and all of them are using latest WF. During the last couple of months I keep getting emails that users have been locked from signing in, like this:

    A user with IP address 195.154.235.171 has been locked out from the signing in or using the password recovery form for the following reason: Used an invalid username 'Admin' to try to sign in.
User IP: 195.154.235.171

    The problem is that /wp-admin and wp-login.php are not accesible in any site. They are blocked both in web server level and also in firewall level. So how can this be possible?

    Thank you

    https://www.ads-software.com/plugins/wordfence/

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘Hack attempt when it should not be possible’ is closed to new replies.