The big WordPress attack and how Namecheap helped
There’s been a large attack on worldwide WordPress installations over the past week. This has made news at the highest levels and was covered early on by ArsTechnica and even today made the BBC.
We were initially rather silent on the attack itself. Others were quick to jump on the PR bandwagon but we were busying ourselves on the fix itself. It is important, though, that I write this blog post to highlight just what the Namecheap technical team achieved.
We were the first to release a working fix that:
- Identified the difference between the attacker’s requests and regular ones;
- Created effective firewall (IP tables) rules that locked the attacker out;
- Accomplished the above without overloading/crashing the server.
We then shared our fix publicly with the hosting industry on WebHostingTalk here, as part of the much larger WordPress discussion thread.
A big thumbs up to the Namecheap technical team behind the WordPress fix!
Introducing EasyWP, the fast and reliable Managed WordPress Hosting solution from Namecheap.
Very nice of you. 🙂
good! 😀
This is the reason we love you guys!
You logged and blocked all 90,000 ish IPs? Very commendable, must have taken a long time! 🙂
Great. So many people depend on wordpress (including me). Big help.
Well done NC!!
Good work namecheap!!
Great stuff!
We know our sites are safe & secure with you.
S.K
I love namecheap 🙂
Just because of that, I will definitively transfer all my domains from GoDaddy to you, and probably buy some hostage! You bet!
Greetings from Portugal.
thank for share..good job namecheap.com
just info ” the attack is coming from upwards of 100,000 individual IP ”
wow
You guys ALWAYS do a GREAT job! Plus you are open about everything as well. Love it.
Nice work, Love you so much 🙂
Great work! Namecheap always do great work!
Thanks Namecheap, I always buy domain at namecheap 🙂
Thanks for the information
Namecheap is my best domain seller.
Proud of you!
thank u n good job namecheap. 🙂
Good Info…
Like this (y)
Wish I’d of known before they wiped out 50 of my wordpress sites, and left me with nothing 🙁
Hey Al, we’re sorry to hear that happened. 🙁 If you transfer to Namecheap, we have hosting plans that offer backup services. We strongly recommend you try it out.
You guys are awesome. I built a blocking mechanism myself based on this page (since I run nginx):
http://www.cyberciti.biz/faq/unix-linux-appleosx-bsd-nginx-block-user-agent/
That worked well for me, since I was able to identify the user-agent that was coming in.
Only 3 simple and powerful steps. I love you guys.
Thanks for getting the “firewall” set up so quickly!
Oh god, thanks. I was so worried about this.