Hidden Admin access – Discovered once again!

  • Hallo,
    I noticed several attempts to login via hidden Admin URL. Brute force attacks protection works quite well but I decided to move to another hidden URL.

    It was discovered once again and attacks are back again.

    Please any idea or advice?
    How it can happen? Login Url are quite complex.
    I would like to solve this situation instead of being awake al night long.

    Thank you
    Regards

    https://www.ads-software.com/plugins/better-wp-security/

Viewing 2 replies - 1 through 2 (of 2 total)

  • Do you actually see your hidden\secret login slug being accessed (not by your ip) ?

    The reason why I ask is because brute force attacks can also be done using xmlrpc and it seems xmlrpc is still enabled on your site. I just want to make sure the brute force attack(s) to your site are not using xmlrpc.

    dwinden

    @alaint

    If you require no further assistance please mark this topic as ‘resolved’.

    dwinden

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Hidden Admin access – Discovered once again!’ is closed to new replies.