It’s not news anymore that hackers like to target WordPress sites, but a recent report from Check Point can help some webmasters get an insight into how they operate.
The security firm analyzed telemetry data from its security products and looked at attacks against WordPress plugins and themes alike.
What the company discovered is that crooks like to launch slow-and-low automated attacks through which they test websites for known vulnerabilities.
Attackers use automated scripts to scan WordPress sites for vulnerabilities
Check Point says it detected automated scripts that sent out on average five attacks per minute against WordPress sites. These attacks were nothing more than POST and GET requests, which checked if certain files and paths were vulnerable to exploit payloads.
The crooks never exploited these security weaknesses when they discovered them but used the information to create a security status report, which they used at a later point to compromise the site. For the full article click here
from hacker samurai http://ift.tt/1OZvIdo
via IFTTT
No comments:
Post a Comment