US-CERT Warns of WordPress Sites Targeted by Mass Brute-force Botnet Attack
We are currently working on an article related to password strength and overall security guidelines one should take while hosting sites and email. Before that is ready to be distributed, we wanted to share some vital information released by the United States Computer Emergency Readiness Team, US-CERT.
WordPress sites have recently been targeted by a mass brute-force botnet attack and all users of a WP site are being advised to take the necessary steps to change their passwords using a much more secure one. Specifically, you need to change you administrator panel (in most cases this will be cPanel or WHM) and also consider changing the ‘admin’ user name to something not easily recognized by this type of attack.
It is our recommendation to use a password and username that is not associated with any other ones you may use for other sites and services. If you have any further questions regarding this announcement, please feel free to contact our support team at firstname.lastname@example.org.