Threat LevelMEDIUM39/1001 rule type
2 incidents on record · last seen 2d ago
| PTR | N/A |
| Org / ASN | OJSC Rostelecom |
| Country | 🇷🇺 Russia |
| City | Voronezh, Voronezh Oblast |
| Timezone | Europe/Moscow |
Attack Analysis
WordPress Username Enumeration
This IP probed the WordPress ?author= parameter to enumerate valid usernames (e.g. ?author=1, ?author=2). Harvested usernames are then fed into credential stuffing or password brute-force attacks. This is purely reconnaissance — there is no legitimate reason to systematically probe author IDs.
Reports (2)
| Date | Severity | Description |
|---|---|---|
| 18 Jun 2026 - 02:54 | high | Web: User enumeration — 3+ author probes in 60s |
| 18 Jun 2026 - 02:53 | high | Web: User enumeration — 3+ author probes in 60s |
EagleEye Intelligence