Wordpress Sites Under Massive Brute-force Attacks
Posted by: Timothy Weaver on 12/19/2016 01:49 PM
[
Comments
]
According to WordPress security firm WordFence, over the last three weeks the brute-force attacks against Wordpress sites has more than doubled.
"Usually we see an average of around 13,000 unique IP’s attacking each day. We’re currently seeing over 30,000 unique attacking IPs and this is continuing to increase," says Mark Maunder, Wordfence Founder and CEO.
The attacks are being generated mostly from one country and one ISP. Statistically, the highest number of attacks are coming from the Ukraine with over 2.3 million attacks daily.
A google search of the ISP, named Pp Sks-lugan, reveals little information about the ISP. The majority of the information is about abuse reports and security related incidents.
The attacks are being generated from 8 IP addresses. These brute-force attacks are numbering in the area of 1.5 million per day. This is larger than the entire brute-force attacks coming from such big sites as traffic coming from GoDaddy, OVH, and Rostelecom put together.
"The difference between the top two networks and the network in third place is dramatic," Maunder says. "OVH is a very large hosting provider, but we’re seeing more than 4 times fewer attacks originating from their network than from the #1 Ukrainian host."
Prevention from such attacks for Wordpress users is to install a WordPress firewall plugin.
Source: Bleeping Computer
"Usually we see an average of around 13,000 unique IP’s attacking each day. We’re currently seeing over 30,000 unique attacking IPs and this is continuing to increase," says Mark Maunder, Wordfence Founder and CEO.The attacks are being generated mostly from one country and one ISP. Statistically, the highest number of attacks are coming from the Ukraine with over 2.3 million attacks daily.
A google search of the ISP, named Pp Sks-lugan, reveals little information about the ISP. The majority of the information is about abuse reports and security related incidents.
The attacks are being generated from 8 IP addresses. These brute-force attacks are numbering in the area of 1.5 million per day. This is larger than the entire brute-force attacks coming from such big sites as traffic coming from GoDaddy, OVH, and Rostelecom put together.
"The difference between the top two networks and the network in third place is dramatic," Maunder says. "OVH is a very large hosting provider, but we’re seeing more than 4 times fewer attacks originating from their network than from the #1 Ukrainian host."
Prevention from such attacks for Wordpress users is to install a WordPress firewall plugin.
Source: Bleeping Computer
Comments
