SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP WordPress login reconnaissance attempt
This event is generated when a remote attacker attempts to access a restricted WordPress page through brute-force. The user agent is known to be associated with this type of attack.
An attempted login using a suspicious username was detected
Ease of Attack:
What To Look For
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
For reference, see the MITRE ATT&CK vulnerability types here:
CVE Additional Information