Wordfence (WordPress Security plugin developer) has detected large scale brute force attacks targeting WordPress website administrator accounts using weak, default or compromised credentials. These attacks are profit-motivated and attempt to compromise administrator login credentials to gain access to sites and embed malware designed to mine the cryptocurrency Monero to generate profit for the malicious actor(s).
Please note that if you are using wp.nyu.edu, you are protected by your unique NYU NetId login credentials and further protected by NYU Multi-Factor Authentication. If you support web servers where clients perform their own WP installs, please make sure that they receive this notification.
For more information and recommendations, please see: