Just spent a good few hours dealing with a sustained “brute force” attack on a WordPress site… about 3,600 login attempts from 2,500 different IP addresses over 15 hours or so. I never use admin as a userid and passwords are always … Continue reading