New WordPress security measure (login window)

  • Friday, 4th December, 2020
  • 20:24pm

Due to persistent and automated attacks on individual WordPress websites, we have introduced an additional security measure.

Who does the change affect?

This affects WordPress website owners who own a cPanel web hosting package.

What does that mean specifically for me?

When navigating to "/wp-admin" (the WordPress administration), a small pop-up window appears, which asks for a username and password. Please enter the following combinations there:

Username: dhwordpress
Password: wordpress

You can then continue logging in to WordPress as usual.

Why was this security measure introduced?

WordPress is a popular target for hackers. Using automated requests (bots), attempts are often made to break into the WordPress administration. Frequently used and weak passwords are tried out until the login was successful.

Once successful, a hacker can use the website for numerous (illegal) purposes - e.g. to distribute illegal content, or to attack other servers and websites (as part of a hacker network).

How does the measure work against the attacks?

First and foremost, this is intended to reduce the large load on the servers and your hosting package. Because every "unnecessary" login attempt costs resources that you and we would of course prefer to make available to "real" website visitors. On the other hand, the additional query also repels initial attacks and hackers, as they (at least initially) do not know the access data for the pop-up window.

If you have any further questions, please contact our customer support.

« Back