Massive attack on WordPress sites

Kevin Lancaster · Feb 10, 2017

Massive attack on WordPress sites

Attacks on WordPress sites which contain the REST API flaw have increased significantly, with 1.5 million pages defaced.

The WordPress REST API vulnerability allows a remote attacker to craft an HTTP request that pings a REST API endpoint and alters titles and content on the user’s website.

biometrics · Feb 10, 2017

My WP site is set to auto update but it didn't install 4.7.2 yet. Weird.

Murmaider · Feb 10, 2017

Yeah this exploit is going to be a big one!

Our systems have already started patching all our customers and reseller's customers wordpress sites for this exploit, without them having to upgrade to 4.7.2 right now.

Thor · Feb 10, 2017

/Runs like a mofo to my cat blog

Petec · Feb 11, 2017

The baddies are going to deface it to say " Scat Blog " !!!

Run like the wind brutha!

gregmcc · Feb 11, 2017

Runs off to check my blog...phew on 4.7.2

DrJohnZoidberg · Feb 11, 2017

Oh thought Massive Attack had an opinion on WordPress sites

Thor · Feb 11, 2017

The cats are safe!

I still some input on the what the heck to do with the landing page. I don't like it, but I cannot think of anything else to do there.

ponder · Feb 11, 2017

Every time I see the thread title I think of,
[video=youtube;u7K72X4eo_s]https://www.youtube.com/watch?v=u7K72X4eo_s[/video]

Join the MyBroadband community

Get started

Massive attack on WordPress sites

Kevin Lancaster

MyBroadband Editor

biometrics

Honorary Master

Murmaider

Expert Member

Thor

Honorary Master

Petec

Expert Member

gregmcc

Honorary Master

DrJohnZoidberg

Honorary Master

Thor

Honorary Master

ponder

Honorary Master