Thursday, February 27, 2020

Why Would Someone DDoS your site

So why would someone mount a DDoS attack on your WordPress site? What could they have to gain from it?
There are many reasons why an attacker might want to put your site out of action via a DDoS attack. These include attacks by competitors and attacks because of your content.
But although you can’t do much to stop someone attempting to damage your site with a DDoS attack, there are steps you can take to ensure that if you are subject to an attack, your site won’t cease working and it won’t be vulnerable to hacking.
We’ll cover those steps later in this post, but first, let’s examine why someone might want to mount a DDoS attack on your site
The very first thing we did was actually change the /account/ page URL to something different. This is always a good first measure. However, this only stopped the attack for a short period of time, until they discovered the new URL. Remember, because this is an e-commerce site, it must have a public account page. Obviously on a blog alone, changing the WordPress login URL and hiding it completely will stop a lot of these types of attacks, but that wouldn’t work in this case. We call it WordPress Security by obscurity

No comments:

Post a Comment