Skip to main content

China responsible for WordPress DDoS attacks

WordPressWordPress suffered one of the largest DDoS attacks in its history on Friday that affected 10 percent of its hosted sites. While it remained unknown who was behind the attack at the time, WordPress did issue a statement saying it believe it had been “politically motivated.” According to WordPress founder Matt Mullenweg, the culprit is believed to be China.

Mullenweg tells TechCrunch that one of the sites affected by the DDoS attacks was a Chinese-language site WordPress hosts that is banned by Baidu. “The vast majority of the attacks were coming from China (98 percent) with a little bit of Japan and Korea mixed in,” he says. DDoS attacks are nothing new for WordPress, but an attack of this magnitude compromised multiple sites and caused staffers to further scrutinize its source.

Mullenweg says he no longer believes politics were motivation for the attacks, but China isn’t off the hook. The country has increasingly found itself accused of issuing these types of attacks or attempting to infiltrate confidential online information. Earlier this year, the WikiLeak’s release of diplomatic cables revealed that the Chinese government was responsible for hacking Google, and security firm McAfee recently issued a report indicating that Chinese hackers were guilty of launching cyberattacks against US fuel companies for years.

While Mullenweg now believes the attack on WordPress wasn’t tied to politics, China is experiencing some social unrest that could be attributed to the uprisings in the Middle East. While activists have been far more passive in China, there is growing concern from the authorities over anti-government demonstrations that are being organized and encouraged online. WordPress has yet to reveal what Chinese-language site was being targeted.

Editors' Recommendations

Molly McHugh
Former Digital Trends Contributor
Before coming to Digital Trends, Molly worked as a freelance writer, occasional photographer, and general technical lackey…
Microsoft stopped the largest DDoS attack ever reported
Nvidia T4 Enterprise Server Wall

Distributed Denial-of-Service (DDoS) attacks have become more common, and Microsoft recently published a blog post looking into the trends for such attacks on its own servers. In that post, the company says that, at one point, it stopped one of the largest-ever-recorded DDoS attacks on a Microsoft Azure server in Asia.

According to Microsoft's data, in November, an unnamed Azure customer in Asia was targeted with a DDoS attack with a throughput of 3.47 Tbps and a packet rate of 340 million packets per second (pps.) The attack came from 10,000 sources from multiple countries across the globe, including China, South Korea, Russia, Iran, and Taiwan. The attack itself lasted 15 minutes. Yet it is not the first one of such scale, as there were two additional attacks, one of 3.25 Tbps and another of 2.55 Tbps in December in Asia.

Read more
Cloudflare reports a massive 175% increase in DDoS attacks
Person using laptop with security graphics in front.

Cloudflare, a web infrastructure and security company, has just released a report titled "DDoS Attack Trends for Q4 2021." According to Cloudflare, 2021 has been a particularly bad year in terms of DDoS attacks.

Ransom distributed denial of service (DDoS) attacks increased by over 175 percent quarter over quarter, highlighting the large scale of the problem described by Cloudflare.

Read more
Thanks but no thanks: WikiLeaks asks its supporters to stop DDoS attacks

Following a massive DDoS attack that left much of the internet in a disarray throughout Friday, WikiLeaks has emerged as a voice crying out in the wilderness. In a message sent out via Twitter (one of the many internet sites affected by the attack on Dyn), WikiLeaks implored its "supporters" to stop attacking the web at large. "Mr. Assange is still alive and WikiLeaks is still publishing," the site said in a tweet. "We ask supporters to stop taking down the U.S. internet. You proved your point."

Read more