Just a few weeks WordPress introduced Two-factor authentication to increase the security of its log-in system. Unfortunately, if you have not had a chance to even allow this new audit process, it could be too late to stop your account hacked. Last week saw the start of a large scale brute force attack any target WordPress Blogs with the user name 'admin' and did not allow the new security feature. The attack is still ongoing.
At the center of the problem seems to be a large botnet with more than 0,000 servers that attempt to connect to thousands of WordPress accounts by running through a list of user names and common passwords. An update on The Hacker News revealed that in recent months the company had seen about 30,000 to 40,000 attacks per day, but had increased to 77,000 this month, with attacks in recent days highlight more than 100,000 per day. Hostgator also reported that they had questions about several sites, with Spiral Hosting confirming that problems almost every major hosting provider in the world has faced.
CloudFlare CEO Matthew Prince, estimated that the botnet targeting WordPress network was capable of testing up to 2 billion different passwords each time. So if you have problems with your site down erratically, you are unable to connect at all, or there seems to be a slow back end of your site, then chances are that you have been target. If this is the case, the advice is to change your username and password immediately and to enable the new authentication system to two factors.
Nobody knows how long this attack will last, so if you followed the advice given and you are always worried about your safety, then using a VPN service can be an excellent option to help ensure your computer is a bit more secure. A VPN can be used as an additional layer of protection when you surf the Internet, which means that your personal information is as insecure, even if you are the target of a major attack like this.
0 Komentar