Hackers gain root access to WordPress servers

Matthew

Posts: 5,269   +103
Automattic, the folks behind WordPress, suffered another blow to its security this week after a hacker gained access to servers containing sensitive company and user data. In a blog post yesterday, President Matt Mullenweg described the breach as a "low-level (root) break-in)" that would have given the attacker access to "potentially anything" on several of Automattic's servers.

Read the whole story
 

Vicenarian

Posts: 104   +10
Why can't the people that control the internet, implement something like this:

An uber-smart "switch" that detects DDoS attacks against websites via traffic/protocol analysis, and automatically cuts off the attackers simply by closing their connections.

How hard would that be? Honestly...
 

R3DP3NGUIN

Posts: 156   +13
there is already sufficient hardware and software solutions, I dont think many companies will upgrade to the latest and greatest of technology though, due to the cost factors and stability and reliability .etc.
 

Coodu

Posts: 169   +7
Really sad to see this - somebody's blog must have started a riot in China, perhaps one about time travel? ;)
 

Per Hansson

Posts: 1,973   +231
Staff member
vicenarian; DDoS is not easy to control at the hardware layer.
What a DDoS is is just millions of hosts asking for a specific webpage at the same time.

To an untrained system admin it will just look like the "Slashdot Effect"
That is when a smaller site gets linked from a much larger site and succumbs due to the sudden increase in traffic from said site (Been there, got the T-Shirt and all :D)

And infact a well done DDoS attack will be impossible to filter, if the users (probably part of a botnet, or not in the case of the software LOIC willing participants) do a good job their traffic will indeed be just like the normal HTTP traffic your servers serves daily...