OMG AMAZING!!! Finally.
This changes everything.
What are you referring to? A new feature? Inquiring minds want to know.
I'm assuming the site was also under attack prior to moving hosts. Have you confirmed that with the site owner?
Yes, it was not. Which is why it is so weird (to me).
He is. SEO can be a trigger for it.
I really didn't want the discussion to revolve around the site I had an issue with.
That would pigeon hole the conversation to the specifics of that site.
I really wanted to discuss how sites are are chosen for attack. I find all the different reasons to go after one site over another to be very interesting.
Is the site fleshed out with SEO terms?
No. It's a brand new Wordpress site at a new server for a domain that has been active for 20 years.
The problem has been resolved with rules.
I really just wanted to discuss how it is that bots (or others) decide to attack a site.......
One of our servers has about 380 wordpress sites on it and the latest site added is under tremendous stress with Wordpress login attempts.
I am curious how it has come to be that the other 379 sites have not experienced any noticeable hacking activity, but this one in particular is getting hammered.
It's a sustained attack against the domain name and not the IP.
This little, and brand new site has burned through 20GB of bandwidth in 22 days. It sure got our attention.
The problem appears to be resolved with some custom regex rules in our firewall, so now it is a matter of time before the load drops.
I'm just curious about what captures the attention of bots? Or was it just luck of the draw?