Strange DDOS attack

Rank Hits Flag Country IP Agent Platform Version
1 591 Unknown 185.188.204.11 MSIE Windows 7.0
2 589 Unknown 185.188.204.7 MSIE Windows 7.0
3 571 Unknown 185.188.204.12 MSIE Windows 7.0
4 566 Unknown 185.188.204.9 MSIE Windows 7.0
5 547 Unknown 185.188.204.8 MSIE Windows 7.0
6 517 Unknown 185.188.204.6 MSIE Windows 7.0
7 492 Unknown 185.188.204.10 MSIE Windows 7.0
8 138 Unknown 185.188.204.14 MSIE Windows 7.0
9 138 Unknown 185.188.204.16 MSIE Windows 7.0
10 138 Unknown 185.188.204.18 MSIE Windows 7.0

It’s funny, I’ve recently had spam requests trying to guess my admin password for the CentOS server I use to run this website. I can only assume it’s some kind of bruteforce attack.

Then even more recently, someone’s tried to trouble me with this attempted DDOS attack. In my opinion, as oxymoronic as this sounds, security through obscurity isn’t really security at all; however, WordPress is extremely popular and there are ways it can be violated/exploited. This specific type of attack probably wouldn’t exist if WordPress wasn’t so popular. I suggest reading about the “Disable XML-RPC Pingback” plugin and installing it.