Large Volume of login hack attempts

  • Resolved kaimana

    (@kaimana)


    7 years, 8 months ago

    I’m using the latest AIOWPS, WP 4.7.3, and the latest versions of plugins that all play nicely together.

    I usually get notification of 3-4 WordPress login hack attempts per day via AIOWPS’s email notification feature, but today I got 180+. They all occurred within a 1-hour time frame, they all came, not from different IPs, but from different IP ranges; and they all used the admin name “friendlyaquaponics”. The site is friendlyaquaponics.com.

    I’m not worried; they didn’t even use the Editor username I use to author posts on the site with (cause it appears in the Url bar in the lower left of the browser screen). They didn’t even get close to the actual admin username, which is a Fijian word 29 characters long.

    This is like having ants in your pants; it’s irritating but not deadly.

    “Just in case”, I hand-entered all 180 IP ranges into AIOWPS’s Blacklist Manager; it took forever even cutandpasta, as we call it in our family. So I’ve got two questions:

    1. Should I be concerned?
    2. Is there an easier way to bulk-enter IP addresses into BlackList Manager?

    Thanks! With Aloha, Tim……….

Viewing 1 replies (of 1 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, I would not be concern. This might have been a one of action. Do you have any of the following enabled?

    Completely Block Access To XMLRPC:
    Disable Pingback Functionality From XMLRPC:

    In regards to your second question, unfortunately no. If you keep receiving IP address from the same country and you don’t really need any relationship with that country you can always block that country from your site.

Viewing 1 replies (of 1 total)
  • The topic ‘Large Volume of login hack attempts’ is closed to new replies.