This article describes how WordPress has become a huge target for massive brute force attacks, due to many WordPress users not using strong credentials. Recently, sites using WordPress have been subjected to attacks by botnets of massive proportions. This is due to many administrators just making their username “admin” and using a simple password such as “123456”, therefore making it easy for a botnet to log into many administrator accounts by using a brute force method of attack on many websites. Solutions to this problem are simple: all WordPress users have to do is change their username and password, if they are simple/not strong, and implement a form of two-factor authentication. The problem with this though, is that many people overlook the importance of internet security and just assume “oh, well that would never happen to me.”
I think this article shows that it is vital that it is made aware that basic security is very important and should not be disregarded. I believe that many people hosting these websites have little knowledge of internet security and need to be informed of its importance before they are hijacked and end up unknowingly contributing to a botnet that could adversely affect many people. This is a simple problem that requires a simple solution, but a solution cannot be formed if people do not know of the problem in the first place. Hopefully the blog’s administrator account credentials are not “admin” and “123456”…