Over 162,000 Wordpress Sites Abused to Perform DDoS Attack
Over 162,000 Wordpress Sites Abused to Perform DDoS Attack – Freedom Hacker
Recently over 162,000 websites using Wordpress were orchestrated to perform a large scale DDoS attack. The popular content management system, Wordpress, a free blogging platform, was found to have a hole letting hackers abuse the system. The recent vulnerability allowed hackers to exploit Wordpress, and not even need to compromise the website or system it was using.
Recently, Sucuri, a large scale hacking clean up team reported Wordpress sites could be abused through vulnerability (CVE-2013-0235), known as Pingback Denial of Service possibility The attack exploited issues with the XML-RPC (XML remote procedure call) on Wordpress. This allows blogs to ping back and track back other websites where ones content may be linked. It allows any blog to initiate pingback and trackback requests through Wordpress.
“Any WordPress site with XML-RPC enabled (which is on by default) can be used in DDoS attacks against other sites,” Sucuri researcher states in the blog post. The XML-RPC feature has been a security vulnerability in the past, but remains a default feature in Wordpress updates. It allows blogs to pingback and communicate with each others content.
If you own a Wordpress website you may be susceptible to the exploit. To check if you site is vulnerable, or participated in the large scale DDoS attack brought on through the exploit, Suciri has a free Wordpress DDoS scanner. Disabling the pingback functionality on your Wordpress blog can also block the exploit. To completely disable the XML-RPC functionality, add the following code into your Wordpress theme.
add_filter( ‘xmlrpc_methods’, function( $methods ) {
unset( $methods[‘pingback.ping’] );
return $methods;
} );
DDoS attacks (Distributed Denial of Service Attack) have been a long lasting method that hackers use to take down websites. A hacker will have large servers, or many computers visit/attack a website all at one time. The large amount of visitors at one time initially overloads the server turning it offline. When high trafficked websites are turned offline, hundreds of thousands of users can be inconvenienced, causing the website to loose possible customers. Not to long ago, Cloudflare battled the largest DDoS attack in history scaling at 400Gb/s.