Botnets doing a brute force attack as of now, Friday 4pm EST

[AdamC]

It annoys me that /wp-admin/ is still hard coded into wordpress (yes, you can edit it, but an update would screw it), would resolve most of these issues quickly.

fwiw, i have:

<LIMIT GET>
order deny,allow
deny from all
allow from xx.xx.xx.xxx
</LIMIT>

at top of wp-admin/.htaccess

basic stuff, should be default for most installations

 

[chigga102]

Does anyone have like a list of things that were generally done when they hacked your site?

 

[ShadowCaster]

If anyone wants to learn how to upload shells to sites easily

SQL INJECTION T+UPLOADING SHELL [ Part 1 & 2 ] - Pastebin.com

brb, mass dickrolls.

 

[(O_o)]

WordPress Hackers Exploit Username 'Admin' - Security -

this was a large attack. over 90k IPs involved.

botnets gunna botnet.

 

[Roundhouse]

Good thing google deindexed all my Wordpress sites back with the panda update or else I would of really been screwed

 

[CCarter]

Good thing google deindexed all my Wordpress sites back with the panda update or else I would of really been screwed

I LOL'd IRL... ​