Currently, WordPress is experiencing a global brute force attack. This is not limited to HostDime, but is affecting web hosts worldwide.
This attack is widespread and very vigorous. At this time, we suggest you log in to your WordPress account and change your password to a VERY strong password in accordance with HostDime’s suggested guidelines.
The attack is specific to WordPress installations at this time.
If you have been having any trouble with your WordPress today, you are likely vulnerable to more issues. If you have a Virtual Private Server or a Dedicated Server, your risk may be higher.
We are taking many proactive measures to mitigate this situation but the best defense starts with you. Please check your websites, your system and update your software. Change your WordPress password immediately. At this time, secure your WordPress installation and, as suggested update your passwords for all of your logins on a regular basis.
We have methods for assisting you in this attack. If you have multiple issues that are beyond your ability to mitigate, or you are unsure what to do, please do hesitate to submit a ticket via Core or contact us via Live Chat. We have support personnel here 24/7 to assist you with any issues you may have.
Thank you for assisting us in keeping your information safe and secure.
UPDATE #1 (12:25 PM EST): There’s a substantiated rumor that Joomla and other open source installations have been attacked as well. More information to follow soon.
UPDATE #2 (4:20 PM EST): Support Manager for HostDime Aric P. has authored a post to help you protect your password from attackers. You can read that post here.