Mailgun’s WordPress website has been hit by a spray-and-pray hacking campaign, as part of the massive attack on WordPress websites.

seen from Hong Kong SAR China
seen from China
seen from Türkiye
seen from Mexico
seen from United States
seen from China

seen from United States
seen from United States

seen from Canada
seen from Canada
seen from Malaysia
seen from United States
seen from Latvia

seen from United States

seen from United States
seen from United Kingdom

seen from United Kingdom
seen from Norway

seen from Canada

seen from Malaysia
Mailgun’s WordPress website has been hit by a spray-and-pray hacking campaign, as part of the massive attack on WordPress websites.
This article explains top 10 reasons why your WordPress website can get hacked and solutions for preventing them.
The Time to Stop Website Hacking is Before it Happens
[caption id="attachment_1712" align="alignleft" width="150" caption="Click to enlarge"][/caption]Of all the marketing nightmares that you don't want to see on your website, the Google interstitial at left (click it to enlarge) is among the least welcome. It means that Google has detected something on your website that could cause harm to visitor's computers. And website hacking is becoming a bigger problem.
That warning page can make visitors run for the exits which would be a marketing disaster.
So if your website has been compromised in some way, what do you do about it?
This past Wednesday, I was up until after 2:00 AM fixing files that had been hacked on a client's website. This is the 2nd time around for this website. And this highlights a common problem with this type of attack. Once a site has been hacked, it is difficult and time consuming (and not always 100% successful) to find the exploit used by the hackers. And if you miss one, you risk recurrence of the problem.
Last month I published 9 things you can do to secure your WordPress website on BobStovall.com. I heard from a few WordPress users who had implemented one or more of my suggestions. It's nice to know when people are listening.
Hopefully, it keeps them from ever seeing that Google interstitial. But let's face it. Some of you will never take any action to secure your websites until that fateful day when you get an email from a concerned, but thoughtful visitor that you site appears to have been hacked.
If the worst happens, be prepared to spend a LOT of time or a LOT of money fixing it.
The Wednesday debacle I mentioned above has run up a bill of $1650 so far. But an ounce of prevention taken long before the problem arose could have prevented this expense.
And that's the point of this post. If you take the time today to put preventative measures into place, you may avoid the worst. No one can guarantee that. Heck, Citibank with all of its resources still got hacked… but you CAN tip the odds more in your favor.
So take the time to read 9 things you can do to secure your WordPress website again and either put those measures in place or have your webmaster do it for you. Before it's too late.
Original Article