I went through a week of attacks to wp-login and xmlrpc which were mostly mitigated by adding Cloudflare Pro.
Got up at 3:00 AM to see progress and saw some activity from China – not a lot. No sooner did I block them that all of a sudden they were on my site by the thousands (see attached).
I’m new at this. What does the group here make of this, especially since it started a minute after I blocked China? They’re mostly GETs as opposed to POSTS. Does this resemble web scraping or is it something else I should be wary about?