I got a message from my security plug-in yesterday, saying that someone had been prevented from signing in to my blog’s Administration section because they had exceeded the permitted number of tries at my password.
That happens, every so often. What has never happened before was this: THEY HAD MY USER NAME.
My user name is not Admin, which is what they usually try, and it isn’t my real name. It’s short but odd, and not anything that anyone would come across randomly. I don’t use the same user name or password for any two sites, so I’m not compromised, but I was a bit unnerved.
They weren’t able to guess my password, but I decided not to take any chances, and I changed it, taking it from weak to Strong.
Go thou, and do likewise.
A WRITING PROMPT FOR YOU: A character goes home and finds someone has been inside but hasn’t broken in.