Global WordPress Brute-Force Attacks

This week has been a busy one here at the JamJo HQ. WordPress has been the target of a global brute-force attack. Sites across the world are being affected. Even the major news agencies such as BBC are covering it: http://www.bbc.co.uk/news/technology-22152296 BBC actually explain the attack quite well. So what is your hosting company doing about it. Well here at JamJo we take security very seriously, we try to prevent these attacks from effecting our network as much as possible. Most hosts tend to rely on their firewalls and not focus on the hosted application itself, WordPress in this case.

The founder of WordPress: Matt Mullenweg, has confirmed that plugins should NOT be used in this situation: Most other advice isn’t great — supposedly this botnet has over 90,000 IP addresses, so an IP limiting or login throttling plugin isn’t going to be great and infact may bring down your server if pointed at your website.

We have updated each of our clients htaccess files who have hosting plans with us in order to stop direct automated attempts to gain access. However not even this will mean total protection so we have taken a number of other actions to strengthen security on all websites. We have also increased backups to our Amazon S3 service in order to have a quick restore to any potentially hacked website.

What all WordPress site owners need to do right now on all sites:

1. Immediately change your passwords to the WordPress admin area, FTP, any control panels
2. Your password should be very strong over 15 characters and MUST have all of: uppercase and lowercase letters, numbers, and special characters.
3. Scan your computer for viruses, keyloggers, rootkits, and botnet software
4. Update WordPress and all plugins to the latest versions (JamJo takes care of this for you)

We are currently monitoring all websites and blocking out any IP range that is trying to automate a login to any website. Please contact us if you find anything strange on your website. All sites right now seem to be clean of any malware as we do regular checks each day for this. Typically keeping your website up to date and keeping all plugins up to date and also maintaining strong password and username controls can prevent against all these types of attacks. This is why we have created this managed website hosting solution solely for WordPress.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
CONSENT	2 years	YouTube sets this cookie via embedded YouTube videos and registers anonymous statistical data.

Cookie	Duration	Description
test_cookie	15 minutes	doubleclick.net sets this cookie to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
YSC	session	Youtube sets this cookie to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.

Global WordPress Brute-Force Attacks

REQUEST A FREE CONSULTATION

Request a free consultation