Hosting Question? Find the Solution -


Browse our Guides, Articles, and How-To's

How to Stop Brute Force Attacks on WordPress Comments?

Category: WordPress
Tags: # # # # #

Be sure to check out our security section for loads more information about detecting and stopping brute force attacks on WordPress comments, WordPress sites and websites in general.

Note: KnownHost proudly provides a protective anti-DDoS network security layer to stop distributed denial of service attacks on all websites hosted with KnownHost. Read more about the KnownHost free DDoS protection at:

What is a Brute Force Attack?

A brute force attack is most commonly an attempt to guess username and password combos to login as an existing user so as to access additional details like account information, payment methods, or other personal information.

How is a Brute Force Attack Different from a DDoS attack?

A DDoS attack is an attempt to flood a website with so many requests that it cannot respond and knock it offline, or to paralyze systems so that security systems can be bypassed. Brute force is more about trying to guess usernames and passwords to get inside.

Are Brute Force Attacks Used in the Comment Form?

Typically brute force attacks go against the login form for WordPress sites, not the comment field. While there could be some value in guessing logins, such as being able to impersonate an existing commenter on a site, it’s rarely worth the effort – particularly when compared to guessing the admin logins for the whole website.

Check out our security section for more information about detecting and stopping brute force attacks as well as DDoS attacks on your WordPress site.