Category Archives: News

WordPress Brute-Force Attack

Wordpress attack

Apparatus:

Distributed botnet, around tens of thousands of bots with their respective IP addresses
A pass file of around 1000 entries with some normal passwords
Default username: ‘admin’

Steps:

  • WordPress 3.0 release before 3 years, users going on with ‘admin’ as their default username, and some usual password
  • A brute-force with username: ‘admin’ and password from the above mentioned file
  • The botnet, tries this attack on each and every wordpress portal available over Internet

Objective:

A well-planned distributed attack (just like itsoknoproblembro shook the banking world) against some hot-spot over the Internet.

How:

The wordpress web servers have very high bandwidth, practically unlimited. Any attack triggered from these servers will have a great impact. This can be done to create a better and huge zombie-net.

Conclusion:

Save your wordpress! Change your password if the username is admin (and also, you need to change the username from admin to something else, for being secure).

Some more tips:

If you are using the .com for your wordpress, change your password and enable the 2 step authentication.

If you are the admin of wordpress installation on your server, you have some more steps to follow – like creating a password for the .wpadmin file and some security modifications in the .htaccess file.

More description for making these changes is available here: Hostgator Support for WP Attack

DNS Amplification and DDoS Attacks

http://blog.cloudflare.com/deep-inside-a-dns-amplification-ddos-attack

A nice article on the DDos Attack – DNS Amplification

 

http://arstechnica.com/information-technology/2013/03/how-spamhaus-attackers-turned-dns-into-a-weapon-of-mass-destruction/

And here’s the Arstechnica article describing the technique for the largest DDoS attack till now.

A weird Google search bug

Last month, it was asked on quora –

> What does -4^(1/4)” mean and why is it connected to porn?

Still today, if you search for that equation on Google, it returns results with xxx titles. Some more contradictory search equations which return same type of results are

“1 2” -1

“1 2” -2

The explanation of the equation -4^(1/4)” is given as – we are asking Google to return pages containing a 1 next to a 4, but which do not contain a 4.

A Google engineer related with the search quality, justifies that this should return zero results, because it is impossible to satisfy both requirements. However, we have uncovered a bug that causes some web pages to “match” these contradictory queries. Since these are the only results that “match” the query, they are the results that get shown.

Its really a bizarre bug in the Google search, which needs to be fixed soon. Though its not affecting many of its users, it is benefiting the porn websites in getting higher ranks.