#Security: Fort Disco Brute-Force Attack Campaign Targets CMS Websites

  August 7, 2013 7:58pm

More than 6,000 websites built on content management systems such as WordPress, Joomla and Datalife Engine were compromised in a new brute-force attack campaign, according to a researcher at Arbor Networks. A botnet called Fort Disco, currently made up of 25,000 Windows machines, is responsible for the attacks and remains active, according to researcher Matt Bing.

An attack tool found on almost 800 of the compromised websites is a variant of the FilesMan PHP backdoor that allows the botmaster to view and edit files, download content and execute new commands. Researchers also found a PHP-based redirector on a relatively small number of sites that sends victims to sites hosting the Styx exploit kit.


2 Reponses

  Post Response

I had a massive headache dealing with this problems in the post. There were days when my website was down for almost a week because of DDOS attacks.

With this new Fort Disco, I can tell this hackers are really partying. I just wonder how much money they make, if they do, for wasting their time doing this. It's really cost a lot of money and stress to the website owners.

  Eddy22 August 7, 2013 8:44pm reply (0)

I hate hackers. They have cost me a lot of money when my Joomla website was hacked and gone offline a couple of years ago. The problem was, my Joomla version was stuck at 1.x. I had to employ and pay some developer to upgrade my website to the latest version. And the attacks disappeared.

So the lesson learned, keep your Joomla version up to date.

  Ben100 August 12, 2013 1:11am reply (0)