Category Archives: Threats

WordPress Hack

By Hayden Graham | September 20, 2020

Hackers first try and access the users database at: /wp-json/wp/v2/users/. If successful you next see repeated attempts to log on to the site, reflected in hits on /wp-login.php & /xmlrpc.php. This is what a WordPress brute force attack looks like: As you can see these hits come from all over the world:

Brightmail Antispoofing

By Hayden Graham | May 7, 2017

0 Comment

There has been a rise in the number of instances of email addresses being spoofed. A new technique of masking the sender address by adding a “direct reply to” address, has increased the likelihood that a user will be fooled. The real sender address can only be detected when the user hits reply, at which point the new… Read More »