Brute Force Attack

With WordPress being the most popular site building tool in use today, that also makes sites built with it a target for hackers. And sometimes those sites are very easy targets when little or no security precautions are taken. Hack attacks come in various guises but one of the better known is the Brute Force…

Read the rest of this article…

Brute Force Amplification Attacks Against WordPress XML-RPC

Sucuri have reported that hackers are exploiting a hidden feature in WordPress’ XML-RPC component, using the system.multicall method to execute multiple Brute Force attacks inside a single post request. Normally, hackers attempt to gain direct access to a site running WordPress through the wp-login.php page. That’s not the case here. Instead, attackers are circumventing the…

Read the rest of this article…