Hackers pose troubles everywhere and their recent victim was one of the largest blogging platforms all over the world which is undoubtedly WordPress. Hackers have made smart use of botnet virus and with this technology; it aims at capturing and retrieving the login credentials for accounts that work at administrator levels. The owners who are most susceptible to the attack include all those who have kept their username as admin. The main strategy used by hackers is to enter ?admin? as username. They then make smart use of a tool that works on brute force algorithm to cleverly guess the password which will help them in hacking the account and gaining unauthorized access. Matt Mullenweg, who is the founder of WordPress, has commented that all those who use ?admin? as their username should try to change it. Further, he requested users to pick up strong password that cannot be easily guessed. At the same time, the two factor authentication feature that is provided at WordPress should be turned on too for the sake of larger security. CloudFare which is the company that works to check that the sites are loaded speedily has commented that the attack was made with the prime motive of using the servers. The hackers did not want to make use of the site or mess with it as their main aim was to extract undue advantage of the servers. The bot nets are not as strong as the servers because they were made of home PCs, however, once this attack gained speed and momentum, its efficiency could increase manifold. It could even force attacks as strong as denial of service attack for some major websites as well. The attack looks to be massive as a lot of different IPs has already been targeted. WordPress authorities are working hard to protect its users. Sorry if i have put it in the wrong section i though everyone with wordpress on this forum should read it.