They are at it again, trying to hack Wordpress. Notice that there were over 5,327 log in attempts to 38 successes. We are using LoginLockDown, but its logs show nothing, even when I went into the SQL database. I am not sure why it does not do a better job of tracking the bogus log in attempts?
Here they are trying to guess the theme and then inject a line of code. Note the addition of "/wp-content/themes/theme name/temp/lots of garbage".