Worldwide WordPress Security Admin Attacks: Secure Your Blogs Now

WordPress Security is always an important part of running your blog, but right now it is even more important than ever.  There is a severe Worldwide Attack going on against all WordPress Installations and it is getting more and more intense.  It is very important to understand that this is happening to everyone who is using WordPress for their websites (which is 60-70% of all sites on the web). The Attack The details of the attack has been covered far and wide. Hostgator was one of the first big names to break the news about the attack with their Global WordPress Brute Force Flood post. The WordPress security team at Sucuri has as series of blog posts about the topic covering how to protect your site, the reality of the attacks, and the consequences of such attacks. Security blog Krebs on Security has a good post covering the topic in depth. The short and simple explanation of what is happening is that one or more illegal botnets (a network of hundreds, thousands, or millions of compromised computers that are being exploited to perform attacks, send spam, etc) are being used to brute-force attack WordPress sites. The goal of a brute force attack is to try as many username and password combinations as possible in order to find valid login credentials. It’s as if someone was trying to guess the combination on a combination lock, but rather than being limited to a single guess every few seconds, they could make hundreds or thousands of guesses a second while never getting tired. The Goal As described above, one or more botnets are being used to perform these attacks. While the actual goal of these attacks is...