Washington: Unidentified group of hackers have reportedly launched a large-scale attack against WordPress blogs.
The attacks began last week, and have affected more than 90,000 blogs so far.
The hackers behind the attacks have combed through WordPress accounts and attempted to guess passwords via brute force.
According to the report, the ultimate goal of the botnet is a mystery; having administrative access to a number of blogs is not that useful in and of itself.
However, a network of over 90,000 compromised machines can wreak all sorts of havoc, especially in denial-of-service attacks.
Matt Mullenweg, a WordPress founder, explained in his blog that hackers had been targeting users who never changed the "admin" username for their account - in retrospect, an obvious security risk.