I have a freshly setup WP blog. It has been running a few days. This morning I work to find over 50 emails in my inbox with variations of the following contained in them :
A host, 92.39.100.201(you can check the host at http://ip-adress.com/ip_tracer/92.39.100.201) has been locked out of the WordPress site at http://menarelikewine.org until Friday, January 17th, 2014 at 7:09 am due to too many login attempts. The provided username was XXXXXXX. You may login to the site to manually release the lock if necessary.
The IPs are different for each email and vary between Russia, Iran, India and Bulgaria from what I have seen. The username isn't mine and is the name of a person I know. That person isn't involved in any way with the blog.
When I try and login I get the following error :
ERROR: We are sorry , your ability to login has been suspended due to too many recent failed login attempts. Please try again later.
None of the emails make any mention of me being locked out or suspended.
I changed the settings in Better WP Security to block IPs for 1200mins (I think, certainly there or thereabouts) after failed login attempts.
Have I made a mistake somewhere? Is this normal?
[Moderator Note: No bumping. If it's that urgent, consider hiring someone instead.]