Более 100 000 сайтов на WordPress были атакованы через свежую критическую уязвимость.

Здесь может быть ваша реклама

26 января 2017 года, разработчики одной из популярнейших CMS в мире выпустили WordPress 4.7.2, сообщив, что в новой версии платформы был исправлен ряд проблем. Как выяснилось неделю спустя, релиз WordPress 4.7.2 устранил крайне серьезную уязвимость, связанную с повышением привилегий. В конце января 2017 года брешь обнаружили специалисты компании Sucuri, и они описывают ее как неавторизованную эскалацию привилегий через REST API. Уязвимости подвержены версии 4.7.0 и 4.7.1.

Тогда раскрытие данных об уязвимости сознательно отложили на неделю, чтобы как можно больше сайтов успели спокойно установить обновление, но, судя по всему, это не слишком помогло. Специалисты Sucuri сообщают, что первые попытки эксплуатации бага были замечены в тот же день, когда информация о проблеме была опубликована. В настоящий момент количество атак продолжает расти и уже превысило отметку 3000 дефейсов в день.

Напомню, что проблема позволяет неавторизованному атакующему сформировать специальный запрос, при помощи которого можно будет изменять и удалять содержимое любого поста на целевом сайте. Кроме того, используя шорткоды плагинов, злоумышленник может эксплуатировать и другие уязвимости CMS, которые обычно недоступны даже пользователям с высокими привилегиями. В итоге атакующий может внедрить на страницы сайта SEO-спам, рекламу, и даже исполняемый PHP-код, все зависит от доступных плагинов.

Аналитики Sucuri пишут, что их собственные серверы-ловушки (honeypot) обнаружили уже четыре группы атакующих, которые активно эксплуатируют свежую проблему WordPress. В блоге компании приведена следующая статистика:

Название группыIP-адресаЧисло жертв victims
2a00:1a48:7808:104:9b57:dda6:eb3c:61e1 (IPv6)
66 000

К сожалению, на данный момент ситуация ухудшилась. Так простой поиск по названию группировки w4l3XzY3 показывает, что компрометации подверглись более 100 000 сайтов:

Исследователи пишут, что пока проблему эксплуатируют преимущественно скрипт-кидди, которые скорее развлекаются, чем пытаются нанести реальный вред. Однако специалисты ожидают, что в скором времени злоумышленники будут пытаться монетизировать баг.

«Мы уже наблюдали несколько попыток эксплуатации проблемы, в ходе которых [атакующие] пытались добавлять спамерские изображения и контент в посты. Учитывая возможность монетизации, скорее всего, это станет самым популярным вектором использования уязвимости», — пишут аналитики Sucuri.

Источник — xakep.ru

We have faith in our guys. So, I mean, whatever happens, happens, and we’re going to keep getting better as a team.». He ought to have taken the additional precaution of coach wallets placing a seal on the cupboard, so as to prevent eyeglasses ray ban any tampering with the lock, or any treachery with a nike dunk high duplicate key. But this he neglected to do.. As someone who had a sleep disorder for the past 14 years, I know exactly what it’s like to feel very exhausted from doing very little. Insomnia is not only a cheap jerseys problem, Cheap NFL Jerseys it’s also a habit. Goodell: I haven thought about that because right now, I think the focus is he got a lot of work to do, the family has a lot of work to do. We going to obviously provide whatever resources we can to help them work through that. In order to defend himself cheap oakleys against these charges, Peterson has hired attorney Rusty Hardin, the man who successfully defended baseball star Roger Clemens after Congress accused him of lying about using performance enhancing drugs. Given that Hardin has experience representing professional athletes who have had brushes with the law, this might be a smart move on Peterson’s part. Meanwhile, accessory spending dropped 5% to $107.4M. In individual games (ranked by dollar sales), new releases took the spotlight: Madden NFL 17 (NASDAQ:EA) topped the chart, followed by No Man’s Sky (SNE) and Deux Ex: Mankind fake ray bans Divided (Square Enix). But you say that the same thinking doesn’t apply to sports, and I wonder and, you know, you’ve got me thinking, I wonder why that is. Why do you think that is?. Spain’s recent domination of world soccer is so great, that it has managed to win Euro 2008, FIFA World Cup 2010, and Euro 2012, a feat unmatched by any country.Spain has a rich history of soccer. Their style of play is superstar like, and the stars from this country are role models for millions of soccer fans all around the world. Tatum’s fake oakleys collision with Stingley came in a pre season «exhibition» game in Oakland in August 1978. Stingley, a wide receiver for New England Patriots, was cutting across the middle of the field, looking back for the pass from his quarterback. If two teams have identical records, they play in a one game playoff to determine the wild card champion. If three or more teams have identical records, then tie breaking rules determine which of the tied teams would face off to determine who earned the wild card berth.. Hope vertically forwards and backwards, pretending that there’s an invisible line that you must jump over each time, perform 50 reps. I’m Gabrielle Woodson and thank you for joining me for jump rope exercises that strengthen your leg muscles.. To top it all cheap jerseys wholesale off he threw a 54 yard pass during the game. All of these touchdowns came Cheap Football Jerseys through two and a half quarters as he sat out for the rest of the game with 6 minutes to go in the 3rd quarter..
healthy lifestyle and diet ‘is all most of cheap jerseys us need’That bond is why Ian misses him keenly now. «I went to his grave sometimes throughout this whole entire process and said, ‘Uncle, man, I wish you were here to tell me what to do,'» Ian said. «I’d sit there hoping he gives me an answer. cheap jerseys from china Graph paper is a necessary tool for anyone who crochets. Use the paper with small, equally proportioned squares to map out a pattern for crochet items. This is a good tool to use to set up a crocheted alphabet project. I had two huge grants, multimillion dollar grants. They run out, and I can’t get funded anymore. I wrote a really good grant recently I’ll keep trying. 6. But you knew there was a but he’s walking five batters per nine innings, and while he’s given up just three homers, when his control starts to go, it always feels like cheap jerseys a three run blast is imminent. Kimbrel is both dominant and way too suspenseful, and that’s only a half decent way for a closer to win friends and save ballgames. Remember prior to going out there you should always cheap nba jerseys be practicing on the sideline, going through your routine, going through your steps which are very key to kicking the football. So really what you do as you are going to line up roughly about two steps back from the kicker. Most kickers today are conventional soccer style kickers and they will have their front foot, if you are a right footed kicker, your first step is going to be made with your left foot and then your right foot and you will cheap oakley sunglasses step into the ball and kick the ball at an angle just like you would a soccer ball. But 2016 presents an interesting race. Barrett all come to mind and we’re only halfway through the season.But there is another quintet of exciting players gaining steam, none of whom had especially healthy oddsas the year began. With that in mind, let us examine the nation’s five unexpected candidates who have deservedly become a part of the Heisman conversation.Browning has led the purple and gold back to national prominence by becoming the linchpin of Chris Petersen’s rebuilding project. And by the way, I should say that the judge appointed a negotiator as a oakley outlet go between, a former federal judge, and he signed off on it, too. So that’s what makes Anita Brody’s the federal judge in this case a little unusual that she said not good enough, not Cheap NFL Jerseys good enough from both sides and the negotiator I appointed. But the NFL did release a short statement essentially saying that the facts are good.

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *