Dear WordPress users, this is kinda important
And by “kinda important”, I mean “really important”. Like, security important.
I normally trust Ars as far as authenticity is concerned, but when I first read the article, I thought ‘well…I haven’t had anything happen to my site. It might not be THAT big.’
(But still, I added the Limit Login Attempts plugin and Google Authenticator plugin, as stated in the article to a site belonging to a client, since they use WordPress, and added the LLA plugin to GPORG–already had the GA plugin installed.)
And then, today, I got ^that^. If a random no-name site like GPORG got hit 16 times, it is probably a bit more severe than I expected. I will never doubt you again, Ars! ლ(ಠ益ಠლ)
(See above linked article for more details, including security tips. Also check the comments for others’ inputs.)