445 posts Code Is Poetry
  • Elite Author: Sold more than $75,000 on Envato Market
  • Has sold $500,000+ on Envato Market
  • Has been part of the Envato Community for over 5 years
  • Made it to the Authors' Hall of Fame
+7 more
gljivec says

Apparently there is a big attack on Wordpress sites going on at this moment. Also our server hosting company informed us, if we have a lot of Wordpress sites on the server we should be very careful. More about the attack can be read here:

http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/
1831 posts
  • Has referred 10+ members
  • Has sold $40,000+ on Envato Market
  • Had an item featured in an Envato Bundle
  • Has collected 1+ items on Envato Market
+4 more
Bedros says

Apparently there is a big attack on Wordpress sites going on at this moment. Also our server hosting company informed us, if we have a lot of Wordpress sites on the server we should be very careful. More about the attack can be read here: http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/

:shocked:

338 posts
  • Has been part of the Envato Community for over 4 years
  • Located in United Kingdom
  • Made it to the Authors' Hall of Fame
  • Sells items exclusively on Envato Market
+3 more
PaulWinslow says

Every time somebody types “Wordpress” instead of “WordPress”, an angel loses its wings.

1511 posts
  • Has referred 1+ members
  • Has sold $10,000+ on Envato Market
  • Has collected 10+ items on Envato Market
  • Made it to the Authors' Hall of Fame
+2 more
OriginalEXE says

Every time somebody types “Wordpress” instead of “WordPress”, an angel loses its wings.
True, and yet, even Envato, who practically “lives” from it, writes Wordpress :)
3503 posts
  • Elite Author: Sold more than $75,000 on Envato Market
  • Has sold $750,000+ on Envato Market
  • Located in United States
  • Helps us moderate the forums
+10 more
sevenspark Moderator says

I thought this deserved a little bump. I have a lot of WordPress sites, and I’ve noticed a lot of brute-force login attempts for the admin username in the last 24 hours. I’d definitely recommend that people:

1. Don’t use ‘admin’ for their administrator username

2. Install the Limit Login Attempts plugin and lock the attempts in short order, at least for the time being. Better WP Security is probably a good idea too ( http://wordpress.org/extend/plugins/better-wp-security/ )

Good luck everyone on outrunning the zombies!

810 posts
  • Has been part of the Envato Community for over 6 years
  • Has been a beta tester for an Envato feature
  • Located in India
  • Sells items exclusively on Envato Market
+1 more
laranz says

IP Limit don’t gonna work I think. http://ma.tt/2013/04/passwords-and-brute-force/

169 posts
  • Has sold $500,000+ on Envato Market
  • Has collected 100+ items on Envato Market
  • Elite Author: Sold more than $75,000 on Envato Market
  • Had an item featured on Envato Market
+4 more
MNKY says

Ok.. was going to install the Limit Login Attempts plugin to our WordPress installs and logged in to multiple WP installations simultaneously. Guess what? IP was immediately blacklisted and now I can’t access my own site.. :ohrly:

106 posts
  • Has been part of the Envato Community for over 4 years
  • Has referred 1+ members
  • Located in Australia
  • Has sold $1,000+ on Envato Market
+2 more
pjtops says

IP Limit don’t gonna work I think. http://ma.tt/2013/04/passwords-and-brute-force/

Shameless but relevant plug: Ghost Captcha For WordPress

Works on all the in-built wordpress forms. It times how fast each form is filled, and if it gets submitted too fast, its marked and discarded as spam. And you can set the minimum required times for each form.

810 posts
  • Has been part of the Envato Community for over 6 years
  • Has been a beta tester for an Envato feature
  • Located in India
  • Sells items exclusively on Envato Market
+1 more
laranz says

Ok.. was going to install the Limit Login Attempts plugin to our WordPress installs and logged in to multiple WP installations simultaneously. Guess what? IP was immediately blacklisted and now I can’t access my own site.. :ohrly:

lol :D

213 posts
  • Has been part of the Envato Community for over 1 year
  • Has referred 50+ members
  • Has sold $75,000+ on Envato Market and is now an Elite Author
  • Has collected 1+ items on Envato Market
+3 more
Playnethemes says

Our live preview was hacked aswell we believe :) Could anyone give us tips on how to improve security? or how to prevent this? :) (edit: just saw sevensparks comment!)

Helpful Information

  • Please read our community guidelines. Self promotion and discussion of piracy is not allowed.
  • Open a support ticket if you would like specific help with your account, deposits or purchases.
  • Item Support by authors is optional and may vary. Please see the Support tab on each item page.

Most of all, enjoy your time here. Thank you for being a valued Envato community member.

Post Reply

Format your entry with some basic HTML. Read the Full Details, or here is a refresher:

<strong></strong> to make things bold
<em></em> to emphasize
<ul><li> or <ol><li> to make lists
<h3> or <h4> to make headings
<pre></pre> for code blocks
<code></code> for a few words of code
<a></a> for links
<img> to paste in an image (it'll need to be hosted somewhere else though)
<blockquote></blockquote> to quote somebody

:grin: :shocked: :cry: Complete List of Smiley Codes

by
by
by
by
by
by