The massive code injection and hidden links on WordPress blogs are getting some serious coverage and just tonight I discovered another form of attack -- the WP Trackback Spam flooding. The attack is simple yet effective -- flood wp-trackback.php with HTTP requests. Add the target page (in this case, wp-trackback.php) into a popular page or site which requests for it at every page load. Metacrawler but these type have malicious intent only goes after a specific page -- wp-trackback.php. Thousands of trackback requests for almost all pages in the blog in a matter of hours. You need to delete wp-trackback.php or CHMOD it to 000. Your blog won't be able to send/receive legit trackbacks but it's the only solution for now. Read more in our articles including "WP Trackback Spam Attack" and "Half a Billion Blogs on Tumblr Moving to WordPress Backend".
They say that the more popular you are, the more attacks you get. This is…
Apr 9, 2008
Automattic, the company behind WordPress, is moving Tumblr’s backend to WordPress infrastructure. If you remember…
Sep 1, 2024Since the last time we suffered a major downtime due to a DDOS attack, been…
Oct 29, 2010This is one of the major updates to the blogging software, WordPress 3.0 is now…
Jun 18, 2010Sometimes, it takes a huge/serious security alert like the one we have now with WordPress…
Sep 6, 2009Most bloggers are familiar with WP SuperCache, a WordPress plugin that dynamically caches WP by…
Apr 14, 2009The massive code injection and hidden links on WordPress blogs are getting some serious coverage and just tonight I discovered another form of attack -- the WP Trackback Spam flooding. The attack is simple yet effective -- flood wp-trackback.php with HTTP requests.
Add the target page (in this case, wp-trackback.php) into a popular page or site which requests for it at every page load. Metacrawler but these type have malicious intent only goes after a specific page -- wp-trackback.php. Thousands of trackback requests for almost all pages in the blog in a matter of hours.
Our coverage of trackback includes: "WP Trackback Spam Attack"; "Half a Billion Blogs on Tumblr Moving to WordPress Backend"; "Auto-backup your blog with Amazon S3". Each article provides unique insights and information.