report today about abuse of a pingback-function in WP

Creating and modifying plugins.
Post Reply
Czorneboh
Regular
Posts: 381
Joined: Tue Apr 08, 2008 7:17 pm
Location: Berlin
Contact:

report today about abuse of a pingback-function in WP

Post by Czorneboh » Fri Mar 14, 2014 9:00 pm

Hi all!

Today Heise is reporting about an abuse of a pingback function in wordpress for DDoS-attacks, here:

http://www.heise.de/newsticker/meldung/ ... 45091.html.

description of the problem in english by the security company here:
http://blog.sucuri.net/2014/03/more-tha ... ttack.html

I would like to know, if s9y could perhaps suffering the same.
Perhaps someone of us askes that security company to check s9y as well? :| and you developers would get the result without such report?

Could this problem report perhaps help the coders to understand how a kind of special spamming, which our blogs are suffering from, is functioning?

Czorneboh

User avatar
onli
Regular
Posts: 2220
Joined: Tue Sep 09, 2008 10:04 pm
Contact:

Re: report today about abuse of a pingback-function in WP

Post by onli » Sat Mar 15, 2014 3:36 am

That is not the typical security problem. There is no solution without deactivating pingbacks entirely, which I can't imagine anyone would want.

Post Reply