What could be considered an attack?
- Logging in and out of Wordpress multiple times in relatively short succession.
- Multiple authentication failures when attempting to login to Wordpress.
- Logging in (and possibly out) of multiple different Wordpress websites in relatively short succession.
- Repeatedly accessing the Wordpress login page on any site(s) in relatively short succession.
False Positives
As with any mod_security rules, they are not 100% guaranteed to catch all attacks and may sometimes detect normal activity and traffic as an attack incorrectly. If you are affected by this error and cannot access your website(s), and would like us to disable this protection to prevent further errors from occuring we can certainly do this. Please get in touch via support ticket to request this if required. Please be advised that disabling these rules will remove any protection against brute force attacks that may be made against your Wordpress installation(s). We strongly recommend that you also install a plugin that may reduce or block invalid login attempts to your site to compensate for the removal of these mod_security rules.