US-CERT is aware of an ongoing campaign targeting the content management software WordPress, a free and open source blogging tool and web publishing platform based on PHP and MySQL. All hosting providers offering WordPress for web content management are potentially targets. Hackers reportedly are utilizing over 90,000 servers to compromise websites’ administrator panels by exploiting hosts with “admin” as account name, and weak passwords which are being resolved through brute force attack methods.
CloudFlare, a web performance and security startup, has to block 60 million requests against its WordPress customers within one hour elapse time. The online requests reprise the WordPress scenario targeting administrative accounts from a botnet supported by more than 90,000 separate IP addresses. A CloudFlare spokesman asserted that if hackers successfully control WordPress servers, potential damage and service disruption could exceed common distributed denial of service (DDoS) attack defenses. As a mitigating strategy, HostGator, a web hosting company used for WordPress, has recommended users log into their WordPress accounts and change them to more secure passwords.
US-CERT encourages users and administrators to ensure their installation includes the latest software versions available. More information to assist administrators in maintaining a secure content management system include:
Review the June 21, 2012, vulnerability described in CVE-2012-3791, and follow best practices to determine if their organization is affected and the appropriate response.
Refer to the Technical Alert on Content Management Systems Security and Associated Risks for more information on securing a web content management system
Refer to Security Tip Understanding Hidden Threats: Rootkits and Botnets for more information on protecting a system against botnet attacks
Additional security practices and guidance are available in US-CERT’s Technical Information Paper TIP-12-298-01 on Website Security.
Tag Archives: attack
BUG OR DRONE?
With the signing of a new law by President Obama this month, the Federal Aviation Administration (FAA) has been directed to completely open US airspace to drones by September 30, 2015. There are many uses arguable for the use of drones, but most think of the unmanned planes we have seen in action against Al Qaeda when the term drone is mentioned.
The Air Force Research Laboratory made an animated video of the many uses of Micro Air Vehicles and how they may work in the field. After being released by a larger air vehicle, these bird or bug like surveillance drones can literally fly under the radar as well as enter places other drones cannot.
The video includes a section on “Remote Tag and Target” and “Precision Engagement.” The narration states, “Individual MAV’s may perform direct attack missions and can be equipped with incapacitating chemicals, combustable payloads, or even explosives for precision targeting capabilities.”
A picture of an existing MAV drone is now pictured as the main image on the Wright-Patterson Air Force Base web site. Back on July 22, 2010, they also released a Fact Sheet entitled “MICRO AIR VEHICLE INTEGRATION & APPLICATION RESEARCH INSTITUTE.”
John Horgan of National Geographic has published an article called “Unmanned Flight: The Drones Come Home” in this month’s issue documenting the history of drones and their possible uses in the US.
Read More
Wright-Patterson Air Force Base
MICRO AIR VEHICLE INTEGRATION & APPLICATION RESEARCH INSTITUTE
‘Bug-Sized’ Drones Are The Most Frightening Type Of Killer Robot Yet
NORTH KOREA RELEASES VIDEO APPARENTLY SHOWING THE ATTACK OF A US CITY
North Korea’s official government website released a propaganda video showing a young man sleeping and having a dream. In his dream the man goes in a space shuttle and orbits the earth. The dream shows a missile being launched, similar to one the rogue state tested in December last year.
The dream then shows a unified Korea, and an image of the America flag. This is followed by images of a city like New York under attack.
“Somewhere in the United States, black clouds of smoke are billowing,” runs the caption across the screen.
“It seems that the nest of wickedness is ablaze with the fire started by itself,” it added.
The music in the background is “We Are the World”. The video ends with the young man waking up and with him concluding this dream will “surely come true”.
It is expected that North Korea will soon perform more nuclear tests, despite further UN sanctions imposed in December.
US ambassador to Libya and 3 other American staffers killed
Benghazi, Libya. The U.S. ambassador (J. Christopher Stevens) and three staff members at the American Consulate were killed on Tuesday following an attack by ultraconservative Islamist protesters.
The staff members were killed after they returned to the Consulate to help other staff members evacuate according to Fox News.
The Islamist protesters are angry over a film that is critical of Islam’s Prophet Muhammad.
Dozens of protesters climbed the walls of the Consulate. After taking down the American flag, they tried to burn it. Unable to do so they then tore it apart and replaced the flag with a black flag with a Muslim statement…”There is no god but God and Muhammad is his prophet”.
Source US ambassador to Libya, 3 American staff members killed in attack | Fox News.
Rebel bombing kills top Syrian leaders, including Assad’s brother-in-law
Rebels in Syria launched a brazen attack in Damascus this Wednesday. They released a bomb beside a high level meeting of security ministers killing three top regime officials which included Bashar Assad’s (the President) brother in law.
This may signal a change in what now looks like a civil war.
According to US Defense Secretary Leon Panetta the bloodshed is “rapidly spinning out of control” in Syria.
The officials killed (as reported by state run television) include: General Dawoud Rajha, General Assef Shawkat and General Hassan Turkmani.
For more news before it happens see prophet.tv.
see source article for more Rebel bombing kills top Syrian leaders, including Assad’s brother-in-law | Fox News.
Mob Attackin Norfolk, Va, Nothing Being Done Due To Racial Issues
On April 14th a mob of 30 black youths attacked an Iranian white couple in an unprovoked attack in Norfolk, Virginia. Dave Forster and Marjon Rostami were sitting at a stop light, when a black teenager threw a rock at their car. Foster stepped out of the car to confront the teen, at which point the mob attacked him. When his girlfriend tried to pull Foster back into car, the gang attacked her as well. Foster and Rostami are both local newspaper reporters, though nothing was written about the incident until May 1st.
Police initially classed the attack as a “simple assault”, rather than a racially motivated “hate crime”. Though 100 people witnessed the mob attack, only one 16 year old has been arrested and little media coverage, suggesting the story has been hushed up.
Prophet TV has been reporting on the significance of racial division in America.
The demons influencing Charles Mason, spoke to him about a future black-white war.
Can we really believe that, had a black couple been attacked by a mob of white youths, the media would have remained silent?