Why my website is under attack ?

Website attack. A very big question for every owner. Everyone keep asking, why? I have a low traffic website and i keep being under attack.

Answer is simple. They do not want your website. They just want your clean reputation and your web server power. Some of the reasons are explained below.

Cryptocurrency Mining

Which is a computationally intense process that puts your web server’s computing power to work on behalf of the attacker. Our security researchers have uncovered evidence of hacks yielding almost $100,000 in just a few days.

Hosting Phishing pages

Remains a popular way to leverage a hacked website. A phishing page is one that attempts to fool you into sharing sensitive information, like your password, credit card number or social security number. An example of a phishing page is a fake login page that gives you the impression you are on an online banking login screen. You enter your credentials and the attacker logs them and can now sign into your real online banking account and steal data.

Because your site has a clean reputation, when attackers host phishing pages on your site, services like Google Safe Browsing that would normally warn users about suspicious websites won’t know to alert visitors to the danger of the phishing page. Well, until the phishing pages are reported. Then, you may end up on a blacklist.

Hosting spam pages and Injecting Spammy Links

Your site is legitimate, so search engines like Google assume that your content, including outbound links, is also legitimate. Attackers love to plant SEO spam in the form of pages and links on your site, boosting SEO rankings for their malicious businesses. It’s important to remember that while your site alone isn’t capable of boosting an attacker’s SEO results, thousands of compromised sites can really move the needle.

Send Spam email

All the time. Getting spam email past spam filters is a difficult endeavor. Email clients use myriad techniques to identify and block spam. Almost all spam filters rely on IP blacklists to block everything from IPs known to send spam. That’s where your web server comes in. Not only does your server have all of the hardware and software spammers need, but the reputation of your IP is likely perfect. By sending spam from your web server, cybercriminals have a much better chance of getting their spam delivered.

Attack other Websites

Attack other Websites. Hackers use this approach in the cryptocurrency mining attack we discovered recently, where an attacker was controlling a botnet made up of thousands of other people’s Websites that were simultaneously mining for cryptocurrency and attacking other websites. Your website is an attractive attack platform because your IP address is likely not on any blacklists.

Add redirects to their content

Visitors to your site don’t even have to click on a hyperlink to visit the spam site–the redirect will just take them there directly. In some cases, attackers will go so far as to redirect all of your traffic to malicious sites. But in most cases, they employ measures to avoid detection, only redirecting traffic to specific URLs or for specific browsers or device types or if the traffic is coming to the site from a search engine.

Read more for security and Ransomware at SNET IT SERVICES, Acronis Master Service Provider

wordfence

Acronis Cloud Backup from SNET IT Services

Backup your data with end-to-end Encryption and Active Ransomware and Crypto-mining Protection.

30 Days FREE Trial

Accounting Services in Bulgaria

Move NOW your accounting
GET 2 MONTHS FREE

REQUEST AN OFFER