Here comes another working week, bearing down on us as inexorably as a runaway freight train on tracks we can’t escape. Lie flat and still, kiddies, because if you lift your head up it’ll get knocked clean off.
Someone’s having a fine time this morning trying to crack WordPress installations. My inbox is blowing up with notices of failed logins from all over the place — on different sites, and with remote hosts all over the globe. How fun! The Voidpress blows dirty old goats, security-wise, and it wasn’t all that long ago that hundreds of thousands of WP installations were cracked wide open by a distributed attack. The news about this one might be interesting, when it breaks. If you’ve got a WP installation somewhere that has any of the following user names, assign the administrator rights to some other user and delete the account(s) listed below:
- adm (actually anything beginning with these three letters)
- aaa (started appearing a few hours ago)
I know it don’t thrill you I hope it don’t kill you…
UPDATE: It appears that the list of attempted user names is growing, so the hot ticket would be to delete any account that’s using a role name (e.g. Administrator) rather than a personal name.