Risk Assessments/Management, Breach, Security Architecture

WordPress sites compromised for DDoS attacks against Ukraine sites

BleepingComputer reports that WordPress sites are being infected by threat actors with a malicious script that facilitates distributed denial-of-service attacks against Ukrainian websites. Hackers have inserted the script into a WordPress site to launch DDoS attacks aimed at 10 websites, including those of Ukrainian government agencies, financial sites, think tanks, International Legion of Defense of Ukraine recruitment sites, and other sites supporting Ukraine amid the Russian invasion, according to a MalwareHunterTeam report. MalwareHunterTeam reported that loading the JavaScript will prompt the site visitor's browser to execute HTTP GET requests with up to 1,000 connections at a time, while the DDoS attack happens stealthily. While only a few websites were found by BleepingComputer to have been infected with the script, developer Andrii Savchenko noted that the number of WordPress sites compromised to conduct such attacks has already reached hundreds. "There's about hundred of them actually. All through the WP vulns. Unfortunately, many providers/owners doesn't react," Savchenko said in a tweet.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.