Skip to main content

With 20,000 sites swallowed up, a botnet is eating WordPress alive

Image used with permission by copyright holder

Hackers controlling a “botnet” of over 20,000 infected WordPress sites are attacking other WordPress sites, according to a report from The Defiant Threat Intelligence team. The botnets attempted to generate up to five million malicious WordPress logins within the past thirty days.

Per the report, the hackers behind this attack are using four command and control servers to send requests to over 14,000 proxy servers from a Russian provider. Those proxies are then used to anonymize traffic and send instructions and a script to the infected WordPress “slave” sites concerning which of the other WordPress sites to eventually target. The servers behind the attack are still online, and primarily target the XML-RPC interface of WordPress to try out a combination of usernames and passwords for admin logins.

“The wordlists associated with this campaign contain small sets of very common passwords. However, the script includes functionality to dynamically generate appropriate passwords based on common patterns … While this tactic is unlikely to succeed on any one given site, it can be very effective when used at scale across a large number of targets,” explains The Defiant Threat Intelligence team.

Attacks on the XML-RPC interface aren’t new and date back to 2015. If you’re concerned that your WordPress account might be impacted by this attack, The Defiant Threat Intelligence team reports that it is best to enable restrictions and lockouts for failed logins. You also can consider using WordPress plugins which protect against brute force attacks, such as the Wordfence plugin.

The Defiant Threat Intelligence team has shared information on the attacks with law enforcement authorities. Unfortunately, ZDNet reports that the four command and control servers can’t be taken offline because they are hosted on a provider that doesn’t honor takedown requests. Still, researchers will be contacting hosting providers identified with the infected slave sites to try and limit the scope of the attack.

Some data has been omitted from the original report on this attack because it can be exploited by others. The use of the proxies also makes it hard to find the location of the attacks, but the attacker made mistakes which allowed researchers to access the interface of the command and control servers behind the attack. All of this information is being deemed as “a great deal of valuable data” for investigators.

Arif Bacchus
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
How to multiply in Excel
Stock photo of woman using laptop at desk

While it's not as easy as tapping a few keys on a calculator, you can use Microsoft Excel to perform simple math, such as multiplying numbers. In order to do this, you'll need to learn Excel's language a bit. But don't worry, in this guide, we'll go over what you need to know as we show you how to multiply in Excel.

We'll review four different ways to multiply in Excel: Simple multiplication within a cell, multiplying numbers from different cells, multiplying ranges of numbers, and multiplying each number of a column by a constant.

Read more
This Microsoft Surface Laptop Studio 2 deal cuts the price by $1,000
Microsoft Surface Laptop 2 sitting on a table.

Microsoft's Surface devices are powerful and versatile -- but those benefits usually come with a steep price. That's why there's always high demand for Surface Laptop and Surface Pro deals, and here's one that we think will sell out quickly -- the Microsoft Surface Laptop Studio 2 for $2,500, following a $1,000 discount from B&H Photo Video on its original price of $3,500. It's still not cheap, but it's an excellent price for a laptop of this caliber. This deal ends on September 22, but it could sell out any minute.

Why you should buy the Microsoft Surface Laptop Studio 2
The first thing that stands out with the Microsoft Surface Laptop Studio 2 is its beautiful 14.4-inch PixelSense Flow touchscreen that offers a 120Hz refresh rate and support for Dolby Vision IQ and HDR. The device also offers three modes: Laptop Mode where you can use its keyboard for typing, Stage Mode where you pull the display towards you to cover the keyboard and give you an angled display for watching streaming shows, and Studio Mode that transforms it into a tablet for sketching. The Microsoft Surface Laptop Studio 2 also comes with Windows 11 Home pre-loaded in its 2TB SSD.

Read more
How to subtract in Excel
A person sitting on the grass and taking notes at a laptop.

Using Microsoft Excel to subtract numbers may take a few more steps than you're used to, but it can be done.

In this guide, we'll show you four different ways to subtract in Excel: Within a cell, using numbers from different cells, via the SUM function, and using the status bar. This way, you'll have a different method you can use depending on your subtraction needs or desired level of ease of use. Scroll on to learn how to subtract in Excel.

Read more