Image by shizhao via Flickr
According to various recent reports, WordPress websites have been targeted by a major hacker attack.
The WordPress sites have been attacked by a botnet consisting of thousands of individual computers since last week.
Unfortunately, many WordPress users fail to change this default username setting, making them ideal targets and extremely vulnerable to this type of brute force hacking attack.
If your WordPress Blog or website has been hacked recently or you wish to learn more about how you can prevent your site from being hacked in the future, read the following helpful advice and learn effective WordPress hacking tips from various internet specialists:
There has been a recent wave of brute force attacks (hacking technique) on WordPress sites over the weekend (although this happens every day all over the world). WordPress sites in particular have been targeted in a recent string of intrusion attempts. There are some simple ways to make sure you are not the next victim.
If a site asks you to login, then someone will try to hack it. WordPress is no exception. The good news is it’s really simple to make your site even more secure.
WordPress, the foremost site which serves as the centre of the blogging world, and is home to more than 64 million blogs has been attacked in a widespread attack by cyber miscreants. The cyber criminals have used brute force attacks to target the blogging site by constructing a ten thousand computers strong botnet, which has got many people worried. The attacks have been going on since the last week when WordPress decided to up the level of security measures on their site.attack by cyber miscreants. The cyber criminals have used brute force attacks to target the blogging site by constructing a ten thousand computers strong botnet, which has got many people worried. The attacks have been going on since the last week when WordPress decided to up the level of security measures on their site.
WordPress site attacked by cybercriminals
The attacks were spotted by CloudFlare and Hostgator, two web optimization firms who also specialize in cyber security and they concluded that the attacks had been on for some time now and that a massive botnet was being used to perpetrate the attacks. Moreover, the culprits are also attacking other similar sites such as Joomla.
The attackers are using the conventional brute force, just on a bigger scale this time. They are trying to target usernames such as ‘admin’ while using thousands of various passwords to gain access to user accounts. CloudFare said in its blog that, “The attacker is brute-force attacking the WordPress administrative portals, using the username ‘admin’ and trying thousands of passwords,” and that “It appears a botnet is being used to launch the attack and more than tens of thousands of unique IP addresses have been recorded attempting to hack WordPress installs.”
This means that the millions of users are at risk of having their accounts hacked and accessed. About this development, the founder of WordPress Matt Mullenweg said that “Here’s what I would recommend:
If you’re running a WordPress site, now would be a good time to ensure you are using very strong passwords and to make sure your username is not “admin.” According to reports from HostGator and CloudFlare, there is currently a significant attack being launched at WordPress blogs across the Internet. For the most part, this is a brute-force dictionary-based attack that aim to find the password for the ‘admin’ account that every WordPress site sets up by default.
HostGator’s analysis found that this is a well-organized and very distributed attack. The company believes that about 90,000 IP addresses are currently involved. CloudFlare, its founder and CEO Matthew Prince told me earlier today, thinks the hackers control about 100,000 bots. As for the scope of the attack, Prince says that CloudFlare saw attacks on virtually every WordPress site on its network
More WordPress Hacking Tips:
- WordPress Security Tips you can implement right now – WordPress…
- WARNING: Massive Hacking Of WordPress Blogs Still … – SEO Tips
- WordPress Blogs Under Botnet Attack and Prevention | Learn …
For even more WordPress Hacking Tips, check out these Tweets:
- RT @PurpleTurtlePro: #WordPress #Hacking #Protection – Do this and Keep your WordPress Website Safe! – http://t.co/3eKhVhIYnU
— johnyy47 (Immanuel Te) (@johnyy47) Wed Apr 24 2013
- RT @SheilaSpeaking: Oh, the places you’ll go! -> Hacking Your Professional Development http://t.co/8eLUCkHo9Z by @acampbell99 #PLN #PD #…
— marcusiologist (Marcus Elia) (@marcusiologist) Wed Apr 24 2013
— IMGlobalSuite (IM Global) (@IMGlobalSuite) Wed Apr 24 2013
For further information on how to improve the security of your WordPress site, please check out the following video:
WordPress Brute Force Attacks And Plugin Protection
A Botnet typically consists of a network of hijacked home computers, usually controlled by a criminal gang. Due to the complexity of the Botnet structure, it is extremely difficult to track the origins of the attack back to a specific source.
Around 17% of the world’s websites are powered by WordPress, which makes this web design platform an ideal target for hackers using this type of Botnet structure to achieve major impact and reek havoc on a massive global scale.
Getonfast have been established for over 10 years and are Website Promotion and internet marketing experts.
We hope that you have found this blog post helpful and informative. As usual please feel free to comment.