Wordpress Websites – DDoS attacks flagged


This week Sucuri Security wrote a blog post about Denial of Service attacks on the rise for WordPress websites. They report that over 162,000+ WordPress sites unwittingly are being used in DDoS attack.

This means attachers are abusing the built-in ping back feature found in WordPress to carry out DDoS attaches on sites. For anyone who has a website on WordPress it could mean your sites is possible being used in these Denial of Serivce attacks.

The principle of a DoS / DDoS attack are very simple. The idea and intent is to disrupt your service, regardless of what it is. The US-CERT (United States Computer Emergency Readiness Team) provides this description:

In a denial-of-service (DoS) attack, an attacker attempts to prevent legitimate users from accessing information or services. By targeting your computer and its network connection, or the computers and network of the sites you are trying to use, an attacker may be able to prevent you from accessing email, websites, online accounts (banking, etc.), or other services that rely on the affected computer. – US CERT

If you are monitoring your website and find you are experience a disruption in service, please get in contact with us or your hosts. You might also like to use the CloudProxy service from Sucuri to ensure your site is safe and sound.