Threat LevelMEDIUM40/1001 rule type
1 incident on record Β· seen 23h ago
| PTR | static-68-235-46-117.cust.tzulo.com |
| Org / ASN | tzulo, inc. |
| Country | πΊπΈ United States |
| City | Chicago, Illinois |
| Timezone | America/Chicago |
Attack Analysis
WordPress Username Enumeration
This IP probed the WordPress ?author= parameter to enumerate valid usernames (e.g. ?author=1, ?author=2). Harvested usernames are then fed into credential stuffing or password brute-force attacks. This is purely reconnaissance β there is no legitimate reason to systematically probe author IDs.
Reports (1)
| Date | Severity | Description |
|---|---|---|
| 3 Jun 2026 - 17:29 | high | Web: User enumeration β 3+ author probes in 60s |
EagleEye Intelligence