Unauthorized login attempts

  • I did not know what forum to put this in so please move it if this is the wrong place.

    I keep getting login attempts on my wordpress website with usernames “Webmaster” and “wpengine” always these two usernames but various password attempts. Is this a bot or something trying to access my website? (This has been happening for few weeks now and I blocked every single IP trying to get in..and yes I realize that blocking IP’s only is not enough) Do you have any advice on what I should do?

    Best of regards
    -sXeCore

Viewing 1 replies (of 1 total)

  • Hi sXeCore,

    You’re right, blocking IPs isn’t the best way to resolve this type of issue. You might try the plugin Limit Login Attempts, which is old, but still works with new WP versions, and is really light.

    If you have cPanel hosting, you can also password protect the entire wp-admin folder (just make sure you don’t have any plugins or anything calling anything from it).

    You can also hide your login page, or only allow certain IPs, but the two methods above are quicker and (in my opinion, anyway) cause less issues for real users of the site.

    Keri

Viewing 1 replies (of 1 total)
  • The topic ‘Unauthorized login attempts’ is closed to new replies.