DEVELOPMENT

WordPress-based websites under attack from massive botnet

19:42 Monday Apr 22, 2013

            

WordPress-based servers are under attack from a massive botnet. It's time to change your password.

A relatively low-key, but intense attack on WordPress (WP) based sites is under way. Hackers are trying to access WP based servers that are using common usernames and passwords such as “Admin, adm, test, password, password1” etc. The attack seems to originate from a botnet comprising of close to, or just over, 90,000 PCs and seems to be an attempt to gain access to a pool of servers that can be used to launch attacks in the future.

WordPress is a very popular CMS (Content-Management System) that forms the backend for almost 17% of all websites on the internet. This includes sites like eBay and any number of blogs from the blogosphere. The attack itself is a very basic brute-force attacks that takes advantage of our laziness by trying to guess a server’s password from a pool of commonly used passwords. The attack is currently using comparatively underpowered home-PCs with limited bandwidth, but as it gains access to more and more servers, the attack can grow in magnitude.

To protect yourself is very simple. Change your username and password to a stronger one.

Matt Wullenberg of WordPress had this to say about the attack:

“Almost 3 years ago we released a version of WordPress (3.0) that allowed you to pick a custom username on installation, which largely ended people using “admin” as their default username. Right now there’s a botnet going around all of the WordPresses it can find trying to login with the “admin” username and a bunch of common passwords, and it has turned into a news story (especially from companies that sell “solutions” to the problem).

Here’s what I would recommend: If you still use “admin” as a username on your blog, change it, use a strong password, if you’re on WP.com turn on two-factor authentication, and of course make sure you’re up-to-date on the latest version of WordPress. Do this and you’ll be ahead of 99% of sites out there and probably never have a problem. Most other advice isn’t great — supposedly this botnet has over 90,000 IP addresses, so an IP limiting or login throttling plugin isn’t going to be great (they could try from a different IP a second for 24 hours).”

 

< Back

    Add your comment

    We aim to have healthy debate. But we won't publish comments that abuse others

    1200 characters left

     

     

    LATEST NEWS

     
      

    © copyright 2013 Website News. All rights reserved.

     

    SECTIONS

    ABOUT

    SUBSCRIBE
     

    Website News is for and about the website design, development, marketing industry. We will endeavor to bring you up-to-date news and information to help you in your work as well as give you useful information and tips for your clients and their businesses.

    We are always keen for you to submit any information you find from elsewhere, or about your business, that you feel will be relevant.

     

     

     

     

    Contact Us:

    For advertising enquiries or to submit a story, please email us at: editor@websitenews.co

     
    Login

    Website News

    Sign-up to Website News and create your universal Woogloo ID

    Your details

    Your login details

    Your address


    Is your address not being found?

    Company

    Company address

    Yes No


    To register on the Website News website you either need to use your
    exisitng Woogloo ID or create a new one (see below).

    Sign Up

    Why sign up?

    • Get access to Registered User's priviledges, which may include hidden pages, special features and special pricing, if they exist, on this website.
    • Get access to all sites powered by Woogloo V3 without having to enter your details everytime.

    Login Error

    Forgot your password?

    Enter your email address below and click 'Reset Password' Button




    What is a Woogloo ID

    Logging in...