Is brute force attack normal?

  • Resolved ultrablogger

    (@ultrablogger)


    4 years, 9 months ago

    Hello everyone,

    So three days ago I setup a WordPress blog. It is the latest version, with only a few popular and up-to-date plugins. It has barely, if any, visitors because it’s so new. It has a VERY strong password (completely random combination of letters, numbers and special characters), but starting from this morning, Loginizer (brute force attack prevention plugin) started alerting me to several lockouts from IPs in different countries. According to the Loginizer dashboard, there has been over thirty login fails, none of which are me.

    My first question is: Is this normal for WordPress sites, and is there a way to tell is my site is part of a botnet or something? I’ve run a virus scan, and it said there’s no malicious files.

    Also, have any of your WordPress sites ever been infected or part of a botnet, and what happened and how did you deal with it?

    Thanks.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    yes, it’s normal. The frequency comes and goes, but there’s always something going on. There’s a number of plugins to deal with it; you’ve got one that seems to be working. Eventually, they’ll tire of hitting your site and move on. And then another bot will come along.

    Thread Starter ultrablogger

    (@ultrablogger)

    I see, thank you for letting me know @sterndata ! At what point do you think it would become a cause for concern? Because I’ve heard of WP sites getting so hammered that the web server crashes.

    Thanks.

    • This reply was modified 4 years, 9 months ago by ultrablogger.
    Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    As there’s not a heck of a lot you can do about it, ignore it. If it does become an issue, you can put your site behind a cloudwall from a place like Cloudflare.

    Thread Starter ultrablogger

    (@ultrablogger)

    OK, thanks for your help @sterndata !

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Is brute force attack normal?’ is closed to new replies.