It seems in the past few days, a few sites were hit with DDOS attacks. Namely FreeThoughtBlogs, Skepchick, and Feminist Frequency. This is the perfect opportunity to stretch our “skeptic muscles”, so to speak.
Going through two of these sites, you’ll see where they’ve indicated the attacks have occurred and speculation is rampant:
I went a different route and remained skeptical. And it seems this was the proper mindset. Here is what I received in my email this morning from WordFence:
“As of 11am eastern time this morning we are monitoring the largest distributed brute force attack on WordPress installations that we’ve seen to date. The real-time attack map on www.wordfence.com became so busy that we’ve had to throttle the amount of traffic we show down to 4% of actual traffic.
A brute force attack is when an attacker tries many times to guess your username password combination by repeatedly sending login attempts. A distributed brute force attack is when an attacker uses a large number of machines spread around the internet to do this in order to circumvent any blocking mechanisms you have in place.”
A quick check of all three websites shows they are WordPress creations.
So, where are all the posts out there saying that perhaps it wasn’t a targeted attack as these blog sites (excepting Feminist Frequency) are very eager to claim?