Don't become part of the zombie horde...
Published: Tue, 04/23/13
Hi,
since the 9th April web hosts across the globe have been experiencing the most widespread brute force attack against WordPress sites ever!
The "Botnet" in question is using over 90,000 unique IP addresses (from compromised/hacked 'Zombie' computers across the world) and attacking a large number of hosts across the globe, specifically targeting WP Blogs.
Brute force attacks against WordPress have trebled in recent months!!!
quicklink: ~> http://alink.co/blogdefender
since the 9th April web hosts across the globe have been experiencing the most widespread brute force attack against WordPress sites ever!
The "Botnet" in question is using over 90,000 unique IP addresses (from compromised/hacked 'Zombie' computers across the world) and attacking a large number of hosts across the globe, specifically targeting WP Blogs.
Brute force attacks against WordPress have trebled in recent months!!!
quicklink: ~> http://alink.co/blogdefender
**NOTE: this goes up in price at the end of this week...
Even big web hosts have been warning their customers about this, some have even had to take drastic measures to keep their servers and their customers sites up and running, even so far as to globally disable access to wp-login.php on sites, so their owners are locked out until the host can put a better solution in place.
This botnet is mainly targeting /wp-login.php and /wp-admin to try and get access using brute force, and obviously the main target for login attempts is the default username "admin".
Does your blog login use the username "admin"..?
The top passwords targetted include some fairly obvious one's, make sure you're not using something as weak as any of these:
admin
123456
666666
111111
12345678
qwerty
1234567
password
12345
123
123qwe
123admin
12345qwe
12369874
123123
1234qwer
1234abcd
123654
123qwe123qwe
123abc
3123qweasd
123abc123
12345qwert
if you are using something like this then you may already be hacked...
so what about some practical advice...
The most important thing you can do right now is:
1. Make sure you have a super strong password
2. check this out http://alink.co/blogdefender for a full, step by step, WordPress security tutorials to secure your blog now...
Extras:
1. delete any unused plugins & themes
2. setup an "admin" that doesn't use the name "admin", and delete the one that does
3. make sure all your plugins, themes & version of WP are up to date
NOTE: BlogDefender is going up in price on April 25th, so act now, before your blog gets hacked...
here's the link again: ~> http://alink.co/blogdefender
Kind regards,
Matt Garrett
Facebook: facebook.com/webmarketingtools/
Blog: MattGarrett.com
Support: AskMattG.com
email: [email protected]
Feedback: blogtactics.com/feedback
Weekly News: http://mat1.com/private/
Premium Domains: http://Ow4.net
P.S. Protect your blog now ~> http://alink.co/blogdefender
All Content in this email is Copyright
© Matt Garrett Ltd. and may not be republished
in any format without express permission.
..................
Legal Stuff:
This message is NEVER sent without your request.
You are receiving this email because you
(or possibly someone using your email address)
signed up for a free report, video course, audio
download, or other product or service from us:
Matt Garrett Ltd. or SEO UK Ltd.
If you no longer wish to receive updates then
simply use the "Unsubscribe" link at the bottom
of this email.
.................................
Legal Disclosure: -
Material Connection Disclosure:
You should assume that the sender
of this e-mail has an affiliate
relationship and/or another material
connection to any 3rd party providers
of goods and services mentioned in
this message and may be compensated
if/when you purchase from a provider.
You should always perform due diligence
before buying goods or services from
anyone via the internet or offline.
.................................
~# End Of Email #~
Matt Garrett,
Suite 258
20 Winchcombe Street
Cheltenham
Gloucestershire
GL52 2LY
UK
& the best bits: http://mat1.com
------------------------------<:)
Too Many Emails?
Private WEEKLY Newsletter:
http://mat1.com/private/
------------------------------<:)
Even big web hosts have been warning their customers about this, some have even had to take drastic measures to keep their servers and their customers sites up and running, even so far as to globally disable access to wp-login.php on sites, so their owners are locked out until the host can put a better solution in place.
This botnet is mainly targeting /wp-login.php and /wp-admin to try and get access using brute force, and obviously the main target for login attempts is the default username "admin".
Does your blog login use the username "admin"..?
The top passwords targetted include some fairly obvious one's, make sure you're not using something as weak as any of these:
admin
123456
666666
111111
12345678
qwerty
1234567
password
12345
123
123qwe
123admin
12345qwe
12369874
123123
1234qwer
1234abcd
123654
123qwe123qwe
123abc
3123qweasd
123abc123
12345qwert
if you are using something like this then you may already be hacked...
so what about some practical advice...
The most important thing you can do right now is:
1. Make sure you have a super strong password
2. check this out http://alink.co/blogdefender for a full, step by step, WordPress security tutorials to secure your blog now...
Extras:
1. delete any unused plugins & themes
2. setup an "admin" that doesn't use the name "admin", and delete the one that does
3. make sure all your plugins, themes & version of WP are up to date
NOTE: BlogDefender is going up in price on April 25th, so act now, before your blog gets hacked...
here's the link again: ~> http://alink.co/blogdefender
Kind regards,
Matt Garrett
Facebook: facebook.com/webmarketingtools/
Blog: MattGarrett.com
Support: AskMattG.com
email: [email protected]
Feedback: blogtactics.com/feedback
Weekly News: http://mat1.com/private/
Premium Domains: http://Ow4.net
P.S. Protect your blog now ~> http://alink.co/blogdefender
All Content in this email is Copyright
© Matt Garrett Ltd. and may not be republished
in any format without express permission.
..................
Legal Stuff:
This message is NEVER sent without your request.
You are receiving this email because you
(or possibly someone using your email address)
signed up for a free report, video course, audio
download, or other product or service from us:
Matt Garrett Ltd. or SEO UK Ltd.
If you no longer wish to receive updates then
simply use the "Unsubscribe" link at the bottom
of this email.
.................................
Legal Disclosure: -
Material Connection Disclosure:
You should assume that the sender
of this e-mail has an affiliate
relationship and/or another material
connection to any 3rd party providers
of goods and services mentioned in
this message and may be compensated
if/when you purchase from a provider.
You should always perform due diligence
before buying goods or services from
anyone via the internet or offline.
.................................
~# End Of Email #~
Matt Garrett,
Suite 258
20 Winchcombe Street
Cheltenham
Gloucestershire
GL52 2LY
UK
& the best bits: http://mat1.com
------------------------------<:)
Too Many Emails?
Private WEEKLY Newsletter:
http://mat1.com/private/
------------------------------<:)