From Russia with DDOS

Last week one of my WordPress installations got hit by a distributed admin password attack.

Over the course of ~24 hours, about 1.800 attempts to log in as administrator have been made, originating from over 500 IP addresses world-wide.

The requests always had the same sequence:

GET /administrator
GET /administrator/
POST /administrator/index.php

The requests continued until I finally “hid” (i.e. renamed) the login script and replaced it with an empty file without input controls. About 15 minutes the requests stopped.

The requests mainly originated from Asia, especially Russia and neighboring states:

5 thoughts on “From Russia with DDOS

  1. Pingback: IPMap – Geocoding Multiple IP Addresses using OpenStreetMap « devioblog

  2. It’s very easy to find out any topic on web as compared to books, as I found this post at this site.

  3. Wow that was strange. I just wrote an really long comment but after I clicked submit my comment didn’t show up. Grrrr… well I’m not writing all that over again.
    Anyways, just wanted to say excellent blog!

  4. This piece of writing concerning Search engine optimisation is in fact fastidious one, and the back links are in fact very useful to market your web page, its also known as Web optimization.

  5. I’m impressed, I must say. Seldom do I come across a blog that’s both equally educative and interesting, and let me tell you, you’ve hit the nail on the head. The problem is something which not enough people are speaking intelligently about. I am very happy that I came across this in my search for something regarding this.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.