WordPress Security: Brute Force Amplification Attack Targeting Thousand of Blogs

Most of the times, we have reported about WordPress vulnerabilities involving vulnerable plugins, but this time security researchers have discovered Brute Force Amplification attacks on the most popular CMS (content management system) platform.
Researchers from security firm Sucuri have found a way to perform Brute Force amplification attacks against WordPress’ built-in XML-RPC feature to crack down administrator credentials.

http://thehackernews.com/2015/10/WordPress-BruteForce-Amplification.html