Content

Latvijas IT drošības ziņu centrmezgls. Informācijas iesniegšana. Avota konfidencialitāti garantējam.

Latviešu WordPress blogi tiek izmantoti pakalpojumatteices uzbrukumu veikšanai

Kategorija: Incidenti

Typical_Distrib_DoS_Attack

At issue is the “pingback” function, a feature built into WordPress and plenty of other CMS tools that is designed to notify (or ping) a site that you linked to their content. Unfortunately, like most things useful on the Web, the parasites and lowlifes of the world are turning pingbacks into a feature to be disabled, lest it be used to attack others.

“Any WordPress site with Pingback enabled (which is on by default) can be used in DDOS attacks against other sites,” Sucuri’s Daniel Cid wrote. “One attacker can use thousands of popular and clean WordPress sites to perform their DDOS attack, while being hidden in the shadows, and that all happens with a simple ping back request.”

My hosting provider shared with me a list of the WordPress blogs that were used in the attack on this blog. I’m sharing it here to get the attention of WordPress administrators.

Uzbrukumos izmantotie blogi, kas satur .lv domēna vārdus:

http://abcinternets.lv
http://abora.lv
http://annasskapis.lv
http://artyomit.lv
http://axp.lv
http://beyondnumbers.lvablog.com
http://clipper.bit.lv
http://dev.webdizainers.lv
http://dropzone.lv
http://elittesport.lv
http://ex.id.lv
http://konnor.lv
http://lapa.lv
http://livanu1vsk.lv/livanu1vsk
http://mansos.edi.lv
http://museum.rkg.lv
http://mxc.lv
http://nodzives.lv
http://old.laimite.lv
http://open.valmiera.lv
http://retirementcentre.lv.com
http://sauna-fortuna.lviv.ua
http://statuss.lattelecom.lv
https://www.hpm.lv
http://tests.jrrmv.lv
http://vestis.leta.lv
http://www.abcarrenting.lv
http://www.adrklubs.lv
http://www.emn.lv
http://www.gmd.lv
http://www.labdien.lv
http://www.lbf.lv
http://www.lvenergy.com
http://www.lv.govpw3c.pw
http://www.lvhua.me
http://www.madvg.lv
http://www.mildaslaiks.lv
http://www.r85vsk.lv
http://www.rchobby.lv
http://www.rigasziedupiegade.lv
http://www.tolix.lv
http://www.ventbunkers.lv

Avoti:
Brian Krebs: http://krebsonsecurity.com/2014/03/blogs-of-war-dont-be-cannon-fodder/

2014-03-24  »  edgars

  1. Imants
    27 March 2014 @ 10:38

    Spraudnis-risinājums šai problēmai ir pieejams wordpress spraudņu katalogā: http://wordpress.org/plugins/remove-xmlrpc-pingback-ping/

Re: Latviešu WordPress blogi tiek izmantoti pakalpojumatteices uzbrukumu veikšanai







Tags you can use (optional):
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>