Hackers Force Unsuspecting WordPress Website Visitors to DDoS Ukrainian Targets
Cybercriminals have injected malicious scripts into compromised WordPress websites that weaponize the browsers of unsuspecting visitors to perform distributed denial-of-service (DDoS) attacks on Ukrainian targets.
Yesterday, security researchers identified a compromised WordPress website that used the malicious script to hit websites with DDoS attacks, according to BleepingComputer.
Targets included Ukrainian think tanks, financial sites, government agencies, pro-Ukrainian websites, and recruitment sites of the International Legion of Defense of Ukraine.
Compromised WordPress website visitors were unaware of the attack. The DDoS attack stealthily unfolded in the background, with no more than a slight slowdown of the host browser to raise suspicions.
Each HTTP GET request sent by the weaponized browsers used a random query string to circumvent caching services such as Akamai or Cloudflare and go straight to the targeted server.
According to developer Andrii Savchenko, hundreds of WordPress websites have been injected with the malicious script used in the DDoS attacks.
Reportedly, the script is the same one used by certain pro-Ukrainian websites to carry out attacks against Russian websites.
However, the identified pro-Ukrainian websites clearly state they would use visitors’ browsers to perform DDoS attacks against Russian targets. In contrast, compromised WordPress websites injected with the script conduct the attacks without the owners’ or visitors’ knowledge.
Note that denial-of-service and distributed denial-of-service attacks bear severe legal consequences, such as hefty fines and prison sentences.
What is medical identity theft and how to protect against it
July 27, 2022
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside
June 28, 2022
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online
June 28, 2022
Bitdefender Reveals the Top Cyber Threats Faced by Consumers in 2021
June 22, 2022
Scam alert: Cybercrooks use shady investment domain to scam keen investors out of money and data
May 24, 2022