Last Friday, I posted about an increase in brute force attacks on WordPress website login pages.
This morning the login limit on one of the WordPress sites I take care of triggered a lockout. The bogus login attempts came from a location somewhere in Hungary.
This is serious. If you haven’t already done so, install the limit login attempts plugin on your WordPress site, and make sure you have a real password. In case you missed it, here’s how.
And even if you don’t have a WordPress website, make sure that whatever passwords you do have on all your accounts are solid.
You’ll be glad you did.
Update 4/19: Over the past 24 hours I’ve had 2 more lockouts triggered. Attacks came from locations in Ukraine and the Netherlands.