The Chillidog Software Blog

The ramblings of a developer

Brute force attack on Wordpress. CloudFlare (free) recommended

I received the following notice this morning from CloudFlare. They are currently monitoring an ongoing brute force attack against Wordpress installations. It is highly recommended that Javabean Hosting users enable CloudFlare on any site that uses Wordpress.

We've been monitoring a brute force attack against WordPress installations. Details about the attack are available at We have rolled out protection against this attack in the CloudFlare Free plan. This attack is significant. We've seen more than 100,000 unique IP addresses participating in it. While this attack is ongoing you should consider enabling CloudFlare Free or higher for any customer using WordPress.