From Russia with DDOS

Last week one of my WordPress installations got hit by a distributed admin password attack.

Over the course of ~24 hours, about 1.800 attempts to log in as administrator have been made, originating from over 500 IP addresses world-wide.

The requests always had the same sequence:

GET /administrator
GET /administrator/
POST /administrator/index.php

The requests continued until I finally “hid” (i.e. renamed) the login script and replaced it with an empty file without input controls. About 15 minutes the requests stopped.

The requests mainly originated from Asia, especially Russia and neighboring states:

4 Responses to From Russia with DDOS

  1. […] the way, the screen shots of my previous post are actually the output of […]

  2. ddos protection says:

    It’s very easy to find out any topic on web as compared to books, as I found this post at this site.

  3. rhinestone tiaras says:

    Wow that was strange. I just wrote an really long comment but after I clicked submit my comment didn’t show up. Grrrr… well I’m not writing all that over again.
    Anyways, just wanted to say excellent blog!

  4. android app says:

    This piece of writing concerning Search engine optimisation is in fact fastidious one, and the back links are in fact very useful to market your web page, its also known as Web optimization.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: