Wordpress Sites Under Wide-Scale Brute Force Attack

From: Rod-Lists 
 'This attack is well organized and again very, very distributed; we have seen over 90,000 IP addresses involved in this attack.' 

=============================================================== From: William Wade ------------------------------------------------------ Wonder if that is what got the colab.is site.

=============================================================== From: Mike Harrison ------------------------------------------------------ The "Chattanooga Technology Council" is supposedly moving to wordpress.. which to me is proof that they are techno-clueless. Yeah, I've yanked their chain about it, this being yet another tug.

=============================================================== From: Rod-Lists ------------------------------------------------------ Wordpress is like Windows. Yes more people know about it than any other CMS. Yes someone who knows what they are doing can lock it down and make it secure. But it is a harder row to hoe with Wordpress. ----- Mike Harrison wrote:

=============================================================== From: Mike Harrison ------------------------------------------------------ The problem is, Wordpress users are often the bottom of the clueful spectrum, It's why they are using it. It's part of why lots of things are dangerous. As Linux systems hit more of the "Normal Person" market, you'll see the same issues. Andoid's done it..

=============================================================== From: William Wade ------------------------------------------------------ If you want to run Wordpress and be safe(r) I would suggest a managed environment like wpengine. But that safety comes at a monthly cost.

=============================================================== From: Stephen Haywood ------------------------------------------------------ I just use wordpress.com to host my blog. Stephen Haywood Owner, ASG Consulting CISSP, GSEC, OSCP T: @averagesecguy W: averagesecurityguy.info

=============================================================== From: Dave Brockman ------------------------------------------------------ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 https://docs.google.com/document/d/1wCpp7U5uOw