Trusted Design

Ukrainian ISP Behind Over 1.65Mil Daily Brute-Force Attacks on WordPress Sites

概要

Over the past three weeks, the number of brute-force attacks against WordPress sites has almost doubled, according to WordPress security firm WordFence. The company says it recorded a sharp increase in the number of daily attacks and daily IPs involved in brute-force requests following November 24. Brute-force attacks are attempts to guess a websites admin (or any user's) credentials by launching repeated authentication requests at small intervals. These attacks usually come at short time intervals, and web firewalls can detect and block them. True brute-force attacks usually involve billions of authentication attempts, as the attacker goes through all the password variations. The incidents WordFence is reporting are most likely dictionary attacks, where an attacker uses a small list of potential passwords, such as "123456" and others.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Wordpress Brute Force Login Attacks: 10/04/15-10/12/15 (score: 0.68)
Probing for Wordpress installations & other web vulnerabilities (score: 0.67)
Wordpress Brute Force (score: 0.60)
Compromised WordPress sites redirect visitors to Nuclear EK (score: 0.59)
WordPress Compromise Campaign (score: 0.55)

このPulseに関連する脅威アクター (事実ベース)

Magic Hound

Score: 6.52

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

HEXANE

Score: 5.27

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1110 - Brute Force

MITREへのリンク →

APT29

Score: 8.92

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1078.003 - Local Accounts

MITREへのリンク →

Gamaredon Group

Score: 4.76

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services

MITREへのリンク →

TA2541

Score: 7.91

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services
T1055.012 - Process Hollowing

MITREへのリンク →

FIN13

Score: 7.28

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1556 - Modify Authentication Process

MITREへのリンク →

HAFNIUM

Score: 11.56

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services
T1550.001 - Application Access Token
T1078.003 - Local Accounts

MITREへのリンク →

Turla

Score: 21.55

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1583.006 - Web Services
T1110 - Brute Force
T1584.006 - Web Services
T1555.004 - Windows Credential Manager
T1189 - Drive-by Compromise
T1124 - System Time Discovery
T1078.003 - Local Accounts

MITREへのリンク →

Volt Typhoon

Score: 12.30

Matched TTPs:

T1016.001 - Internet Connection Discovery
T1614 - System Location Discovery
T1680 - Local Storage Discovery
T1124 - System Time Discovery

MITREへのリンク →

Earth Lusca

Score: 7.40

Matched TTPs:

T1583.006 - Web Services
T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Mustang Panda

Score: 7.64

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1027.007 - Dynamic API Resolution

MITREへのリンク →

ZIRCONIUM

Score: 4.60

Matched TTPs:

T1583.006 - Web Services
T1124 - System Time Discovery

MITREへのリンク →

MuddyWater

Score: 3.51

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT28

Score: 20.60

Matched TTPs:

T1583.006 - Web Services
T1110 - Brute Force
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1498 - Network Denial of Service
T1550.001 - Application Access Token
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

FIN7

Score: 7.27

Matched TTPs:

T1583.006 - Web Services
T1124 - System Time Discovery
T1078.003 - Local Accounts

MITREへのリンク →

Lazarus Group

Score: 14.83

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1027.007 - Dynamic API Resolution
T1680 - Local Storage Discovery
T1124 - System Time Discovery

MITREへのリンク →

Confucius

Score: 6.34

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery

MITREへのリンク →

Saint Bear

Score: 3.51

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT32

Score: 7.94

Matched TTPs:

T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1078.003 - Local Accounts

MITREへのリンク →

Kimsuky

Score: 10.66

Matched TTPs:

T1583.006 - Web Services
T1055.012 - Process Hollowing
T1680 - Local Storage Discovery
T1078.003 - Local Accounts

MITREへのリンク →

APT38

Score: 13.36

Matched TTPs:

T1562.013 - Disable or Modify Network Device Firewall
T1110 - Brute Force
T1189 - Drive-by Compromise
T1036.006 - Space after Filename

MITREへのリンク →

Ember Bear

Score: 4.02

Matched TTPs:

T1110 - Brute Force
T1203 - Exploitation for Client Execution

MITREへのリンク →

APT41

Score: 8.15

Matched TTPs:

T1110 - Brute Force
T1203 - Exploitation for Client Execution
T1595.003 - Wordlist Scanning

MITREへのリンク →

OilRig

Score: 7.64

Matched TTPs:

T1110 - Brute Force
T1203 - Exploitation for Client Execution
T1555.004 - Windows Credential Manager

MITREへのリンク →

Dragonfly

Score: 5.78

Matched TTPs:

T1110 - Brute Force
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

CURIUM

Score: 7.98

Matched TTPs:

T1584.006 - Web Services
T1189 - Drive-by Compromise
T1124 - System Time Discovery

MITREへのリンク →

Winter Vivern

Score: 5.39

Matched TTPs:

T1584.006 - Web Services
T1189 - Drive-by Compromise

MITREへのリンク →

Gorgon Group

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

Threat Group-3390

Score: 6.41

Matched TTPs:

T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Patchwork

Score: 9.24

Matched TTPs:

T1055.012 - Process Hollowing
T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1680 - Local Storage Discovery

MITREへのリンク →

BlackByte

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

menuPass

Score: 3.15

Matched TTPs:

T1055.012 - Process Hollowing

MITREへのリンク →

Sidewinder

Score: 4.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

Andariel

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

The White Company

Score: 4.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

Axiom

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Higaisa

Score: 6.92

Matched TTPs:

T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery
T1124 - System Time Discovery

MITREへのリンク →

Leviathan

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

APT37

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

UNC3886

Score: 4.09

Matched TTPs:

T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

BRONZE BUTLER

Score: 5.85

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1124 - System Time Discovery

MITREへのリンク →

Sea Turtle

Score: 4.16

Matched TTPs:

T1203 - Exploitation for Client Execution
T1078.003 - Local Accounts

MITREへのリンク →

Transparent Tribe

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Tropic Trooper

Score: 6.99

Matched TTPs:

T1203 - Exploitation for Client Execution
T1680 - Local Storage Discovery
T1078.003 - Local Accounts

MITREへのリンク →

Elderwood

Score: 3.26

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise

MITREへのリンク →

Darkhotel

Score: 5.85

Matched TTPs:

T1203 - Exploitation for Client Execution
T1189 - Drive-by Compromise
T1124 - System Time Discovery

MITREへのリンク →

Volatile Cedar

Score: 4.13

Matched TTPs:

T1595.003 - Wordlist Scanning

MITREへのリンク →

SideCopy

Score: 4.13

Matched TTPs:

T1614 - System Location Discovery

MITREへのリンク →

Stealth Falcon

Score: 3.62

Matched TTPs:

T1555.004 - Windows Credential Manager

MITREへのリンク →

Wizard Spider

Score: 3.62

Matched TTPs:

T1555.004 - Windows Credential Manager

MITREへのリンク →

PROMETHIUM

Score: 4.43

Matched TTPs:

T1189 - Drive-by Compromise
T1078.003 - Local Accounts

MITREへのリンク →

Scattered Spider

Score: 4.54

Matched TTPs:

T1538 - Cloud Service Dashboard

MITREへのリンク →

Chimera

Score: 5.43

Matched TTPs:

T1680 - Local Storage Discovery
T1124 - System Time Discovery

MITREへのリンク →

Velvet Ant

Score: 6.80

Matched TTPs:

T1078.003 - Local Accounts
T1211 - Exploitation for Defense Evasion

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Turla

Score: 0.82

Matched TTPs:

T1555.004 - Windows Credential Manager
T1584.006 - Web Services
T1078.003 - Local Accounts
T1583.006 - Web Services
T1189 - Drive-by Compromise
T1110 - Brute Force
T1124 - System Time Discovery
T1016.001 - Internet Connection Discovery

MITREへのリンク →

APT28

Score: 0.80

Matched TTPs:

T1211 - Exploitation for Defense Evasion
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1203 - Exploitation for Client Execution
T1110 - Brute Force
T1550.001 - Application Access Token
T1498 - Network Denial of Service

MITREへのリンク →

Lazarus Group

Score: 0.56

Matched TTPs:

T1027.007 - Dynamic API Resolution
T1189 - Drive-by Compromise
T1583.006 - Web Services
T1680 - Local Storage Discovery
T1203 - Exploitation for Client Execution
T1124 - System Time Discovery

MITREへのリンク →

APT38

Score: 0.55

Matched TTPs:

T1036.006 - Space after Filename
T1189 - Drive-by Compromise
T1110 - Brute Force
T1562.013 - Disable or Modify Network Device Firewall

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る