Hello everyone,
my WordPress blog was attacked and the hacker published several unsolicited posts.
My honeypod recorded the access and it turned out that the hacker obtained an author's password and used it to publish the post automatically at midnight. The IP address used, 5.62.20.0, leads us to Avast and Avast VPN services.
Is it true that Avast does nothing against illegal actions, allowing the user's origin to be disguised by providing an anonymous VPN? If not, would you share with me the full credentials and origin of the user who tried to log into my blog at
2022-03-30 08:49:45 UTC from 5.62.20.0?
I am looking forward to your reply.
M.