Just spent a good few hours dealing with a sustained “brute force” attack on a WordPress site… about 3,600 login attempts from 2,500 different IP addresses over 15 hours or so.  I never use admin as a userid and passwords are always … Continue reading →