383 posts Code Is Poetry
  • Elite Author
  • Sold between 250 000 and 1 000 000 dollars
  • Has been a member for 4-5 years
  • Interviewed on the Envato Notes blog
  • Author had a File in an Envato Bundle
  • Europe
  • Author had a Free File of the Month
  • Bought between 10 and 49 items
+3 more
gljivec says

Apparently there is a big attack on Wordpress sites going on at this moment. Also our server hosting company informed us, if we have a lot of Wordpress sites on the server we should be very careful. More about the attack can be read here:

http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/
1389 posts
  • Author had a File in an Envato Bundle
  • Bought between 1 and 9 items
  • Exclusive Author
  • Sold between 10 000 and 50 000 dollars
  • Europe
  • Has been a member for 4-5 years
  • Referred between 10 and 49 users
Bedros says

Apparently there is a big attack on Wordpress sites going on at this moment. Also our server hosting company informed us, if we have a lot of Wordpress sites on the server we should be very careful. More about the attack can be read here: http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/

:shocked:

322 posts
  • Bought between 100 and 499 items
  • Exclusive Author
  • Has been a member for 4-5 years
  • Referred between 10 and 49 users
  • Sold between 50 000 and 100 000 dollars
  • United Kingdom
PaulWinslow says

Every time somebody types “Wordpress” instead of “WordPress”, an angel loses its wings.

1400 posts
  • Has been a member for 2-3 years
  • Exclusive Author
  • Sold between 10 000 and 50 000 dollars
  • Bought between 10 and 49 items
  • Referred between 1 and 9 users
  • Croatia
OriginalEXE says

Every time somebody types “Wordpress” instead of “WordPress”, an angel loses its wings.
True, and yet, even Envato, who practically “lives” from it, writes Wordpress :)
3365 posts
  • Elite Author
  • Sold between 250 000 and 1 000 000 dollars
  • Community Moderator
  • Bought between 50 and 99 items
  • Referred more than 2000 users
  • Has been a member for 4-5 years
  • Repeatedly Helped protect Envato Marketplaces against copyright violations
+4 more
sevenspark Volunteer moderator says

I thought this deserved a little bump. I have a lot of WordPress sites, and I’ve noticed a lot of brute-force login attempts for the admin username in the last 24 hours. I’d definitely recommend that people:

1. Don’t use ‘admin’ for their administrator username

2. Install the Limit Login Attempts plugin and lock the attempts in short order, at least for the time being. Better WP Security is probably a good idea too ( http://wordpress.org/extend/plugins/better-wp-security/ )

Good luck everyone on outrunning the zombies!

782 posts
  • Exclusive Author
  • India
  • Has been a member for 5-6 years
  • Beta Tester
  • Referred between 1 and 9 users
  • Microlancer Beta Tester
laranz says

IP Limit don’t gonna work I think. http://ma.tt/2013/04/passwords-and-brute-force/

147 posts
  • Elite Author
  • Sold between 250 000 and 1 000 000 dollars
  • Bought between 100 and 499 items
  • Has been a member for 2-3 years
  • Exclusive Author
MNKY says

Ok.. was going to install the Limit Login Attempts plugin to our WordPress installs and logged in to multiple WP installations simultaneously. Guess what? IP was immediately blacklisted and now I can’t access my own site.. :ohrly:

101 posts
  • Australia
  • Bought between 1 and 9 items
  • Exclusive Author
  • Has been a member for 4-5 years
  • Referred between 1 and 9 users
  • Sold between 1 000 and 5 000 dollars
pjtops says

IP Limit don’t gonna work I think. http://ma.tt/2013/04/passwords-and-brute-force/

Shameless but relevant plug: Ghost Captcha For WordPress

Works on all the in-built wordpress forms. It times how fast each form is filled, and if it gets submitted too fast, its marked and discarded as spam. And you can set the minimum required times for each form.

782 posts
  • Exclusive Author
  • India
  • Has been a member for 5-6 years
  • Beta Tester
  • Referred between 1 and 9 users
  • Microlancer Beta Tester
laranz says

Ok.. was going to install the Limit Login Attempts plugin to our WordPress installs and logged in to multiple WP installations simultaneously. Guess what? IP was immediately blacklisted and now I can’t access my own site.. :ohrly:

lol :D

207 posts
  • Belgium
  • Bought between 1 and 9 items
  • Exclusive Author
  • Has been a member for 1-2 years
  • Referred between 10 and 49 users
  • Sold between 50 000 and 100 000 dollars
Playnethemes says

Our live preview was hacked aswell we believe :) Could anyone give us tips on how to improve security? or how to prevent this? :) (edit: just saw sevensparks comment!)

by
by
by
by
by
by