It has been a while since I have posted due to lack of time.
This is going to be a short post, but one intended to provoke some thought.
I recently checked the logs in my website and I was surprised to see the number of people who had attempted to gain administrative access. Over the past year, I have been subject to several hundred brute force attacks on this website, according to my security logs. This website is a personal website, with no financial or other valuable information, yet people are actively attempting to gain administrative access into my personal account?
Why? This I do not know. I think that some people just want to hack for the sake of hacking. There is very minimal traffic to this website, at time of this writing. The other is that protections against brute force are absolutely critical. No wonder 2-factor authentication is quickly gaining steam.
However, it is an important thought experiment because, well, it goes to show the extent of how people will go to try to get into someone’s website, even though there is little financial gain. It also means that for websites with financial value, security is quite critical.