I did some checking here, it has worried me all morning, My host suggested making the wpadmin folder password protected effectively creating a double sign in. I have not done this yet as I need to check on the negative side effects but it seems simple enough. Should stop load on the site as well. Looking at WHM I can see that at the apache level there is no IP of that value so wordfence might have to step up on this vulnerability
↧