Dec 21

WordPress Attacks: Brute Force Logs

Tags:

———————————————————————
– OVERVIEW / THOUGHT PROCESS –
———————————————————————

There are literally millions of ‘bots’ out there on the internet which target WordPress installations on a daily basis. This quick post will talk briefly on one type of attack called a Brute Force attack which attempts to log into your WordPress site using several common and default username / password combinations. To conclude this post, I’ll also talk about a new adaptation to these bots that has me extremely concerned.

———————————————————————
– BRUTE FORCE –
———————————————————————

As mentioned earlier, a brute force attack is used by someone with malicious intent to attempt to break into a system which allows user inputs for access. 99% of the time, the user input will be in the form of a username / password combination. If the combination is inputted correctly, access is granted to the system which allows the malicious user to do anything according to the privilege level

—————————————–

Always remember… WHAT IF AND WHY NOT?!?