News WordPress sites are vulnerable to an attack leveraging visitors' browsers for a password-cracking botnet

[Admin]

Attackers are launching distributed password-guessing attacks across hundreds of WordPress websites using a mere 3 kilobit script.

WordPress sites are vulnerable to an attack leveraging visitors' browsers for a password-cracking botnet : Read more

 

[CmdrShepard]

Ah, Wordpress... the gift that keeps giving.

 

[Vanderlindemedia]

It's time devs, webdesigners, majority of folks, stop using wordpress, and look for serious alternatives.

I host websites as a profession other then designing or doing marketing. One thing i noticed is the amount of resources required, just to run wordpress, and just to spawn up one page.

As a countermeasure you need tough tools like litespeed cache, redis object cache, and additional use of Cloudlinux in order to cap or limit users whenever they exceed their resources in such attacks. Let alone the sheer amount of updates that can brick your website just like that.

Roughly 50 to 60% by now of total or complete server traffic or consumed resources, is purely wordpress or noise caused by it. It's a terrible product from a technical standpoint.

 

[Alvar "Miles" Udell]

NoScript should be used on -any- site.

 

[EduAAA]

whatever, share the leaked hot chick porn pictures

 

[digitalgriffin]

Ah, Wordpress... the gift that keeps giving.

The problem isn't word press. It's people using weak passwords. This can happen to any website with file sharing.