Wordpress Themes - WP Forum at BFA
Click here to register or to donate.
Auto self-registration is not available here - far too many spammers. This forum has many, many backlinks and because of that there is an intense desire among spammers to drop their links here.

Wordpress Themes - WP Forum at BFA » Running WordPress » Web Hosting for WordPress »

Repeated hack attempts on my site


 
Prev Previous Post   Next Post Next
  #1  
Old Dec 20, 2013, 06:38 AM
paulae's Avatar
paulae
 
1,333 posts · Feb 2009
Wordpress 3.4.1, Atahualpa 3.7.7
Exclamation Repeated hack attempts on my site

This is just an FYI for everybody here.

Last night, I received 9 emails from the Wordfence security plugin on one of my sites. The most important of my sites, in fact. I'll paste it here, with the site name redacted:

This alert was generated by Wordfence on "XXXXXXXXXX" at Thursday 19th of December 2013 at 09:16:38 PM

A user with IP address 112.199.116.75 has been locked out from the signing in or using the password recovery form for the following reason: Used an invalid username 'root' to try to sign in.
User IP: 112.199.116.75
User hostname: 75.116.199.112.clbrz.inet.eastern-tele.com


I never use "admin" or "root" as my admin name when installing Wordpress. I have several types of security plugins installed. But this kind of hack attempt is still scary. And I didn't feel warm and fuzzy after contacting Bluehost about it. I emailed them just to alert them that my site was under attack, and I thought they might want to know, since I'm sure mine is not the only Wordpress site hosted there that's being hit right now. I got back a boilerplate "here's what to do if your site has been hacked" email. Obviously, no human ever read my email.

So, this post is just a warning: never use "admin" or "root" or some other generic word as your admin username, have a strong password, and use security plugins. There are other Wordpress hardening methods discussed at wordpress.org and on many Wordpress-oriented websites. Be safe out there!
 

Bookmarks

Tags
admin username, hack attempt, wordfence

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes


Similar Threads
Thread Thread Starter Forum Replies Last Post
Lots of repeated code on this page Marge Center area post/pages 1 May 31, 2012 03:31 PM
Hack Attack and FileZilla rickheck New Versions, & Updating 1 May 28, 2012 06:39 PM
Help - Recovering from major hack mandrakeman1965 New Versions, & Updating 8 Aug 22, 2010 07:52 PM
Testing new thread, question about hack paulae Atahualpa 3 Wordpress theme 1 May 18, 2010 02:45 PM
admin-ajax-php hack? CHi106 Atahualpa 3 Wordpress theme 0 May 16, 2009 06:01 PM


All times are GMT -6. The time now is 08:18 PM.


Powered by vBulletin® Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.