WAECFlyer5:
The problem here is that the person knows my recovery email!!!

And also, knows some details about my website.

lalasticlala, please b4 yu sleep, 2mao might be late

snowland:
Like some people already suggested, install Wordfence and your blog will be secured.

Just got a mail from wordfence about some Aethera Botnet that is attcking wordpress blogs/websites by guessing your password. Read the full detail below:

[size=18pt]Aethera Botnet Attacks WordPress Sites
[/size]
Exec summary: There is currently a botnet that has been identified that is targeting WordPress websites with a password guessing attack. If you have Wordfence installed with our default settings, you are already protected against this attack. The botnet is powered by modem/router devices. ISP’s are gradually patching the devices but many are left vulnerable or infected as some ISP’s respond slowly to this issue.

Full article:

In February of this year a security researcher at Voidsec noticed brute force attacks on his personal WordPress site and he noticed a pattern in the IP addresses attacking his site. They were mostly Italian internet service providers. They were:

Fastweb
Albacom, now BT-Italia
Clouditalia
Qcom
WIND
BSI Assurance UK

What he discovered is that the IP’s attacking his site were all devices. They were all Aethera modem/routers to be exact. By doing some further sleuthing he discovered that all the Aethera devices involved in the attack were using default login credentials (blank/blank).

The modems had obviously been hacked and the attacker had gained access through the default login. They had then installed malware on the modems that launched a brute force password guessing attack on WordPress sites.

The Aethera devices in question suffer from various XSS vulnerabilities, a CSRF vulnerability and a HTML5 cross-origin resource sharing issue.

The researcher then used Shodan, a search engine for devices on the Net, to find out how many vulnerable Aethera devices are on the Net and found around 8,000 vulnerable devices. They likely used a search on Shodan similar to this one.

They estimate that the amount of bandwidth the combined vulnerable devices have access to is between 1.7 and 17 Gigabits per second. This could be used for a massive distributed denial of service attack.

Voidsec tried to contact all ISP’s without much luck. Fastweb was responsive after a time and they have fully patched all affected routers. BT-Italia has been unresponsive and remains vulnerable.

While this research was happening, Krebs published a post about Lizard Squad, a hacking group, and a new DDoS tool that they were trying out to knock websites (and anyone else) offline. It seems that Lizard Squad may have been using the Aethera vulnerability to power their DDoS botnet.

The timeline was as follows:

Feb 13: Voidsec discovers the botnet. They contacted BT-Italy at this time.
Feb 25: Tries again to contact BT Italy using various methods with no luck.
December 11: FastWeb is told about the vulnerability and they agree on a disclosure schedule.
December 22: Disclosure and FastWeb’s routers are fixed.

Here’s the full post on voidsec.com. Voidsec is an Italian company so the post is also available in Italian.

We will continue to monitor activity from this botnet at Wordfence and will share any interesting data we uncover.

There are still many unpatched Aethera router/modems out there and they are still being used to launch attacks. Hopefully with the press coverage around this issue, the unresponsive ISPs involved will patch their customer devices and stop the attacks they’re launching on WordPress websites and other targets.

https://www.wordfence.com/blog/2015/12/aethera-botnet-attacks-wordpress-sites/

Afrieyes:

Who told you?

Last week I had to quickly change my password after I got a notification that I logged in anoda place

publicenemy:
Open a new Blog and leave the old one for the hacker.









Isn't opening a new Blog as easy as opening a yahoo mail account?

publicenemy:
Open a new Blog and leave the old one for the hacker.









Isn't opening a new Blog as easy as opening a yahoo mail account?

mentorandfriend:
Ignoramus

kingsilly:
I'll strongly advice, open another blog and leave dat one for the hacker...

tosyne2much:
hahaha


Bros u sef dey bash ni?

mentorandfriend:
Hahaha. When the need arises.

E make sense jawe bro

mentorandfriend:
Hahaha. When the need arises.

tosyne2much:
Bro, u got my mail?

NigeriaReports:
[size=15pt]Call 08060245843 For Full Anti-Hacking Online Kit[/size]