Lucene search
K

39 matches found

ThreatPost
ThreatPost
added 2015/05/12 4:44 p.m.10 views

Default Credentials Lead to Massive DDoS-For-Hire Botnet

Tens of thousands of home and office-based routers have been hijacked over the last several months to form a botnet used to stage a DDoS campaign. The attacks first surfaced at the tail end of last year, around Dec. 29, and after a short reprieve, spiked twofold over the last month. The web...

0.7AI score
Exploits0References2
The Hacker News
The Hacker News
added 2014/06/23 10:11 p.m.14 views

DNS Flood DDoS Attack Hit Video Gaming Industry with 90 Million Requests per Second

Hackers are leveraging large number of compromised machines a botnet network to carry out massive DNS Flood DDoS attack against a large Video Gaming Industry website, peaking above 110 Gbps. A US based security solutions provider Incapsula, is protecting a famous Video Gaming website from this hi...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/05/12 3:35 p.m.45 views

PointDNS Recovers from Massive DDoS Attack

PointDNS says most of its DNS servers are online again after a massive DDoS attack late last week took down the service provider. A post on the company’s Twitter account on Friday said the provider was adding nameservers and working with network providers to restore service to its customers. Many...

5CVSS1AI score0.97755EPSS
Exploits23References5
The Hacker News
The Hacker News
added 2013/10/17 5:22 p.m.7 views

World's 3rd Largest Chinese Bitcoin exchange hit by 100Gbps DDoS attack

In March of this year, we saw the first ever 300 Gigabit DDoS attack, which was possible due to a DNS Reflection Amplification attack against Spamhaus. On 24 September World's 3rd Largest Bitcoin exchange BTC China, a platform where both Bitcoin and Chinese yuan are traded faced massive DDoS atta...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/10/17 6:22 a.m.11 views

World's 3rd Largest Chinese Bitcoin exchange hit by 100Gbps DDoS attack

In March of this year, we saw the first ever 300 Gigabit DDoS attack, which was possible due to a DNS Reflection Amplification attack against Spamhaus. On 24 September World's 3rd Largest Bitcoin exchange BTC China, a platform where both Bitcoin and Chinese yuan are traded faced massive DDoS atta...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/01 1:16 p.m.45 views

Millions of WordPress sites exploitable for DDoS Attacks using Pingback mechanism

Distributed Denial of Service attacks have increased in scale, intensity and frequency. The wide range of motives for these attacks political , criminal, or social makes every merchant or organization with an online presence a potential target. Over the weekend Incapsula mitigated a unique DDoS...

6.4CVSS6.6AI score0.28857EPSS
Exploits3
The Hacker News
The Hacker News
added 2013/05/01 2:16 a.m.58 views

Millions of WordPress sites exploitable for DDoS Attacks using Pingback mechanism

Distributed Denial of Service attacks have increased in scale, intensity and frequency. The wide range of motives for these attacks political , criminal, or social makes every merchant or organization with an online presence a potential target. Over the weekend Incapsula mitigated a unique DDoS...

6.4CVSS6AI score0.28857EPSS
Exploits3
The Hacker News
The Hacker News
added 2013/04/24 3:50 p.m.14 views

Who Needs a Botnet when you have a 4 Gbps DDoS Cannon?

In recent months the DDoS world has shifted from complex small scale Botnet attacks to much larger network based DDoS attacks, perpetrated largely by hijacked web servers. How many of these hijacked servers are out there remains to be seen. However, Incapsula recently got a very good idea of just...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/02/06 12:0 a.m.25 views

Incapsula Component for Joomla! 'token' Parameter Multiple XSS

The version of the Incapsula component for Joomla! running on the remote host is affected by multiple cross-site scripting XSS vulnerabilities in the Security.php and Performance.php scripts due to improper sanitization of user-supplied input to the 'token' parameter before using it to generate...

5.3AI score
Exploits0References1
The Hacker News
The Hacker News
added 2013/01/30 2:15 p.m.10 views

Incapsula introduces 'Backdoor Protect' feature in Cloud-based Website Security

Incapsula announced this week that they're offering an intriguing Backdoor Protection feature for sites using their cloud-based website security and performance services. What's a Backdoor? A backdoor is a malicious function that enables hackers to remotely operate a site or server, even after...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2013/01/30 3:15 a.m.19 views

Incapsula introduces 'Backdoor Protect' feature in Cloud-based Website Security

Incapsula announced this week that they’re offering an intriguing Backdoor Protection feature for sites using their cloud-based website security and performance services. What’s a Backdoor? A backdoor is a malicious function that enables hackers to remotely operate a site or server, even after...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2013/01/10 1:48 p.m.12 views

Under the hood of recent DDoS Attack on U.S. Banks

Incapsula security study reveals how a simple neglect in managing the administrative password of a small UK site was quickly exploited by Botnet shepherds operating obscurely out of Turkey to hurl large amounts of traffic at American banks. If you've been following the news, you are probably awar...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2013/01/09 12:0 a.m.28 views

Joomla Incapsula 1.4.6_b Cross Site Scripting

Joomla Incapsula Component target="blank" class="IFJlink" Click here to upgrade your account Patch: ------ 22: " target="blank" class="IFJlink"Click here to upgrade your account -------------------------------------------------------------------------- Tested on: Microsoft Windows 7 Ul...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/01/09 12:0 a.m.37 views

Joomla Incapsula 1.4.6_b Cross Site Scripting Vulnerability

Joomla Incapsula component versions 1.4.6b and below suffer from a reflective cross site scripting vulnerability. Joomla Incapsula Component target="blank" class="IFJlink" Click here to upgrade your account Patch: ------ 22: " target="blank" class="IFJlink"Click here to upgrade your account...

6.7AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2013/01/08 12:0 a.m.30 views

Joomla Incapsula Component <= 1.4.6_b Reflected Cross-Site Scripting Vulnerability

Summary Once installing the Incapsula for Joomla component, simply make the provided DNS changes and within minutes your website traffic will be seamlessly routed through Incapsula’s globally distributed network of POPs. Description The Joomla Incapsula component suffers from a XSS issue due to a...

6.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/08 12:0 a.m.18 views

Joomla! Component com_incapsula - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/57190/info The Incapsula component for Joomla! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2012/11/22 4:13 p.m.9 views

Incapsula innovative DDoS Protection techniques

Several weeks ago we reviewed Incapsula, a Cloud-based Security service which can significantly enhance the security of your website, while also boosting its performance. Following this review we've received many responses from our readers who wanted to learn more about Incapsula protection...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2012/10/16 9:59 a.m.9 views

Incapsula - Essential Cloud based Security Solution for your Website

Over 2011-2012 we've seen an increase in distributed denial-of-service DDoS attacks and other web attacks on SME's websites. Incapsula is one of the companies whose service is useful to protect your website from all threats and mitigate DDoS attacks which affect your websites, servers, databases,...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.57 views

Anti-Scanner Defenses (HTTP)

It seems that the remote web server rejects HTTP requests from the Scanner. It is probably protected by a reverse proxy, WAF or IDS/IPS. SPDX-FileCopyrightText: 2005 Michel Arboi SPDX-FileCopyrightText: New / improved detection code since 2018 Greenbone AG Some text descriptions might be excerpte...

7.1AI score
Exploits0
Rows per page
Query Builder