Why can't I log into WordPress?

Recently, there was a worldwide, highly-distributed WordPress attack. This attack was known for using forged or spoofed IP addresses and trying to brute force log in over and over again. Aside from the obvious security concerns, this caused serious performance issues across all our servers.

What we learned was that the best way to mitigate this type of attack is to put an extra layer of security on top of the built-in WordPress security.

For this reason, when trying to login to WordPress we have added an HTTP-Authentication form.

The default user and password are easy to remember.

user: wordpress
password: wordpress

One you submit the form, you will see the customary WordPress login.

This simple scheme will ensure that your sites are safer from Brute Force attacks and that your sites are performing at optimal levels.