Researchers identified a widespread campaign of brute force attacks against WordPress websites.

Source