A friend of mine recently challenged my post SIEM 102 — Detect WordPress bruteforce where he proposed a tool that can effectively bruteforce WordPress from a lot of different IPs. My answer: you need to have a good InfoSec Strategy!
Never receive an alert from Windows Defender? You should!
The fact that we didn’t know Defender blocked an attack and we only learned it when we receive the report should be considered a disaster!