I logged over 3,000 attempts to login to my WordPress sites on May 16th. Luckily, they were mostly immediately blocked, added to my firewall. The list of 1,501 different attacking IP addresses can be found here. So far today (Friday the 17th) I have logged over 1,800 attempts to log into my sites via wp-login.php.
WP-Login.php Attempts for May 15, 2013
Yesterday I logged over 2,200 attempts to login to my WordPress sites. Luckily, they were mostly immediately blocked, added to my firewall. The list of 1,473 different attacking IP addresses can be found here. So far today (Thursday the 16th) I have logged over 1,000 attempts to log into my sites via wp-login.php.
WP-Login.php Attempts for May 14, 2013
Yesterday I logged over 4,500 attempts to login to my WordPress sites. Luckily, they were mostly immediately blocked, added to my firewall. The list of 3,340 different attacking IP addresses can be found here. So far today (Wednesday the 15th) I have logged over 800 attempts to log into my sites via wp-login.php.
WP-Login.php Attempts for May 13, 2013
Yesterday I logged over 7,000 attempts to login to my WordPress sites. Luckily, they were mostly immediately blocked, added to my firewall. The list of 4,033 different attacking IP addresses can be found here. The attack started at 2:50 in the afternoon on Monday the 13th. Sunday I received only six attempts, so classifying this […]
TimThumb.php Vulnerability Scans
Earlier today one of my web sites was scanned for the timthumb.php script. timthumb is a web application that allows for the site to gather and resize images. The script is included in a lot of WordPress themes, such as the list of 332 themes listed at the bottom of this post. If you are using one of these themes, upgrade it, and confirm that timthumb has been upgraded to address its security problems.
Tweaking My Server Security
Over the past few weeks my web/email server has been attacked multiple times. So I’ve started hardening my defenses. Stay tuned as I will be documenting what I do and what I learn. Today I’ve been experimenting with iptables and the settings for my sshd (the server that allows me to connect to the web […]