Huge attack on WordPress sites could spawn never-before-seen super botnet

Security analysts have detected an ongoing attack that uses a huge number of computers from across the Internet to commandeer servers that run the WordPress blogging application.

The unknown people behind the highly distributed attack are using more than 90,000 IP addresses to brute-force crack administrative credentials of vulnerable WordPress systems, researchers from at least three Web hosting services reported. At least one company warned that the attackers may be in the process of building a "botnet" of infected computers that's vastly stronger and more destructive than those available today. That's because the servers have bandwidth connections that are typically tens, hundreds, or even thousands of times faster than botnets made of infected machines in homes and small businesses.

"These larger machines can cause much more damage in DDoS [distributed denial-of-service] attacks because the servers have large network connections and are capable of generating significant amounts of traffic," Matthew Prince, CEO of content delivery network CloudFlare, wrote in a blog postdescribing the attacks.

It's not the first time researchers have raised the specter of a super botnet with potentially dire consequences for the Internet. In October, they revealed that highly debilitating DDoS attacks on six of the biggest US banks used compromised Web servers to flood their targets with above-average amounts of Internet traffic. The botnet came to be known as the itsoknoproblembro or Brobot, names that came from a relatively new attack tool kit some of the infected machines ran. If typical botnets used in DDoS attacks were the network equivalent of tens of thousands of garden hoses trained on a target, the Brobot machines were akin to hundreds of fire hoses. Despite their smaller number, they were nonetheless able to inflict more damage because of their bigger capacity.

There's already evidence that some of the commandeered WordPress websites are being abused in a similar fashion. A blog post published Friday by someone from Web host ResellerClub said the company's systems running that platform are also under an "ongoing and highly distributed global attack."

"To give you a little history, we recently heard from a major law enforcement agency about a massive attack on US financial institutions originating from our servers," the blog post reported. "We did a detailed analysis of the attack pattern and found out that most of the attack was originating from [content management systems] (mostly WordPress). Further analysis revealed that the admin accounts had been compromised (in one form or the other) and malicious scripts were uploaded into the directories."

The blog post continued:

"Today, this attack is happening at a global level and WordPress instances across hosting providers are being targeted. Since the attack is highly distributed in nature (most of the IPs used are spoofed), it is making it difficult for us to block all malicious data."

According to CloudFlare's Prince, the distributed attacks are attempting to brute force the administrative portals of WordPress servers, employing the username "admin" and 1,000 or so common passwords. He said the attacks are coming from tens of thousands of unique IP addresses, an assessment that squares with the finding of more than 90,000 IP addresses hitting WordPress machines hosted by HostGator.

"At this moment, we highly recommend you log into any WordPress installation you have and change the password to something that meets the security requirements specified on the WordPress websitethe company's Sean Valant wrote. "These requirements are fairly typical of a secure password: upper and lowercase letters, at least eight characters long, and including 'special' characters (^%$#@*)."

Operators of WordPress sites can take other measures too, including installing plugins such as this one and this one, which close some of the holes most frequently exploited in these types of attacks. Beyond that, operators can sign up for a free plan from CloudFlare that automatically blocks login attempts that bear the signature of the brute-force attack.

Already, HostGator has indicated that the strain of this mass attack is causing huge strains on websites, which come to a crawl or go down altogether. There are also indications that once a WordPress installation is infected it's equipped with a backdoor so that attackers can maintain control even after the compromised administrative credentials have been changed. In some respects, the WordPress attacks resemble the mass compromise of machines running the Apache Web server, which Ars chronicled 10 days ago.

With so much at stake, readers who run WordPress sites are strongly advised to lock down their servers immediately. The effort may not only protect the security of the individual site. It could help safeguard the Internet as a whole.

Read More

Trick To Use Facebook Without Any Gprs For Free Of Cost In 2013

     
Friends,

I' am here with my new Facebook trick 2013

This trick will provide you free usage on facebook

• 1. Zero.fb.me
• 2. 0.fb.me
• 3. O.Fb.me [ (alphabet capital 'O')not zero]
• 4. O.facebook.com ( capital alphabet)
• 5. 0.facebook.com ( zero number)
• 6. m.zero.facebook.com
• 7. m.facebook.us
• 8. O.facebook.us
• 9. 0.facebook.us
• 10. zero.facebook.us
• 11. m.facebook.pk

Try the above link’s to have a free gprs in your mobile for facebook

Hope you like this …….
Thankx enjoy
Visit us daily , for more tips trick & lots of updates.

Read More

Lenovo Yoga 13 Review

The IdeaPad Yoga 13 was one of the first hybrid Windows 8 systems that consumers got a look at. Lenovo unveiled a near-finished prototype at CES nearly a year ago – well before Windows 8 was finished and ready for prime time. Since that time we’ve learned a great deal about Lenovo’s flagship touchscreen convertible but perhaps the biggest question was whether or not a convertible notebook/tablet makes sense at a time when dedicated tablets are arguably the hottest trend in consumer electronics.

Despite multiple attempts from manufacturers over the past several years, hybrids never gained much traction, not necessarily because of hardware issues but simply because the software to support such an environment hasn’t existed until just recently. Previous iterations of Windows did support touch in a limited capacity but the UI was never built with touch in mind.

Evidently that has all changed with Windows 8 which adds a touch friendly environment front and center (but not everywhere) and Lenovo looks to capitalize early and often with the do-it-all Yoga 13. Priced from $999, this system was one of the first portable systems to launch alongside Windows 8. I’ve spent the past several weeks learning the ins and outs of this hybrid Ultrabook and without jumping right to the conclusion from the get-go, I will let you know that it’s a very capable all-around system that doesn’t compromise on that it is first and foremost: a notebook.

Our evaluation unit arrived with a third generation Intel Core i5-3317U processor clocked at 1.7GHz, 4GB of RAM (systems in this class now ship with 8GB of memory), Intel HD Graphics 4000 and a 128GB solid state drive. True to its name, the Yoga 13 utilizes a 13.3-inch HD+ LED Multitouch display operating at 1,600 x 900 resolution – a bit sharper than many other 13-inch panels in its class. The price for the system price as tested here today (with 8GB RAM) is $1,099.

Lenovo IdeaPad Yoga 13" - $999

• 13.3" 1600x900 IPS LED multi-touch display
• Intel Core i5-3317U (1.7 - 2.6GHz)
• Intel HD Graphics 4000
• 4GB of DDR3 RAM
• 128GB SSD
• SD/MMC card reader
• 1 USB 3.0, 1 USB 2.0, HDMI, audio jack
• 802.11b/g/n, Bluetooth 4.0
• 1-megapixel webcam
• Chiclet keyboard
• Glass trackpad with integrated buttons
• 4-cell Li-Polymer battery
• 13.4 x 8.85 x 0.66 inches, 3.4 pounds

Upon first glance there’s no indication that the Yoga 13 is anything outside of a standard Ultrabook. The outer portion of the lid is coated with a rubber-like material that’s silver / grey in color. A Lenovo name plate is affixed in one corner which gives the system an overall modern and classy look from the exterior.

On the front edge of the Yoga is a backlit power button, battery indicator and a tiny recessed reset button that admittedly didn’t do anything when pressed. On the right edge we find a button to lock the screen rotation when in tablet mode, an SD card reader, a USB 2.0 port and a unique looking charging port that more resembles another USB port than anything else.

The back edge of the Yoga is lined with discrete ventilation slots between the two sturdy screen hinges. On the left side of the Ultrabook is an HDMI-out port, a USB 3.0 port and a combination headphone / microphone jack. Closer to the front of the left edge is a volume rocker and what appears to be a tiny hole for a microphone.

There’s not much to see on the underside of the Yoga 13 aside from four small rubber feet. Upgrading internal components will take some work as there are eight tiny six-sided screws that look to hold the bottom cover in place. You’d certainly need some sort of special screwdriver to remove them so if you are planning to add more memory to the system, it might be best to let Lenovo handle that when you place your order.

Raising the lid reveals a screen that other manufactures would call an Infinity display. That is, the screen and the bezel are covered with a single piece of glass to give the illusion that the two flow together seamlessly. With the display powered on, however, you can see that the bezel around the screen is a little on the thick side. Normally this would be frowned upon but given the fact that the Yoga doubles as a tablet, this actually is good because it gives you some room to hold the system.

A 720p webcam sits centered atop the display and below it is a finger-sized button with the Windows logo in it. Pressing this button performs the same task as pressing the Start button which in Windows 8, switches you between Metro-style view the traditional Desktop UI. Its placement is especially handy in when using the system as a tablet.

The island-style keyboard sits slightly lower than the surrounding area / palm rest. This is done on purpose as to minimize key presses when using the system in tablet mode (more on that in a bit). The keyboard itself has a nice overall feel albeit a few of the keys (the right Shift key and to a lesser extent, the Backspace key) are a bit shorter than usual. Neither of these bugged me at all as I realized I never use the right Shift key and the Backspace key wasn’t short enough to cause any problems.

Unlike some other Lenovo systems I have used, the company decided to place the left Ctrl button in what most would consider the appropriate location – the bottom left of the keyboard. The Fn button is just beside where, where most would expect to find it. And speaking of, the function keys just above the number keys default to their alternate use, meaning you have to hold down the Fn key to press F5 for a refresh, etc.

Lenovo elected to use a glass trackpad that integrates both mouse click buttons. I’m typically not a fan of this implementation, instead preferring physical buttons like those found on the IdeaPad U260 but I must hand it to Lenovo as they have done a fine job with the all-in-one trackpad on the Yoga 13. One of my biggest complaints with similar setups is that clicking the mouse button also moves the cursor. That didn’t seem to happen very often on this system thankfully. The overall size of the trackpad seems just right too – there’s plenty of room to manipulate the cursor yet I still had enough room to type comfortably without my palms causing the cursor to go haywire.

The wrist rest and the surrounding area around the keyboard appear to be constructed of a soft leather-like material. The overall look is extremely classy although as I found out later, this surface is prone to picking up smudge marks and other debris when it’s lying face down in tablet orientation.

Read More

Razer Edge Pro met with mixed opinions as reviews hit the web

Reviews of the long-awaited Razer Edge Pro are trickling in today as the Intel-powered gaming tablet is set to launch this weekend. Overall the slate is billed as a very capable portable device but according to at least a few publications, it’s not without some shortcomings.

CNET concluded that the Edge signals a strategy shift away from traditional PC gaming to an increasingly portable consumer computer landscape. It’s still a niche product but the publication likened it to a Swiss Army Knife of mobile PC gaming. The high price and limited specs, however, might make consumers question whether or not it’s the right fit for them but the team was impressed nevertheless.

PCMag essentially echoed those sentiments as they raved over the innovative design, powerful internal components and the flexibility to allow users to play anywhere. The device still can’t match a standard gaming laptop in terms of price and performance but overall they found it to be a rare device that reimagines what the PC experience should be, delivering something that’s not just different, but better.

Maximum PC, on the other hand, wasn’t quite as fond of Razer’s new gaming tablet. They noted that it sounded good on paper but in actual use, the Edge is a letdown. To put it bluntly, they called it a compromised monstrosity. So what went wrong?

For starters, they said the Edge is thick and heavy for a tablet which means you’ll ultimately end up resting it on your body for support. Maximum PC also cited the controller peripheral as too heavy and expensive to be a game changer but their biggest issue is the fact that it lacks a physical keyboard. They said Windows 8 might be better with touch but it sucks with only touch. Finally, the team had problems connecting to certain Wi-Fi networks.

The most powerful windows tablet around goes on sale March 30 starting at $999 for the base model and $1,299 for the Pro.

Read More

iOS 6 review

The definitive guide to Apple's iOS 6 software features for iPhone, iPod touch, and iPad

iOS 6 is a software update divided against itself. Apple claims over 200 new user-facing features, which is the same if not more than previous versions of iOS. Many of these are good and solid, reducing the friction and increasing the functionality of iOS, and delightfully so. But a lot of it them are also about Apple and the future of their platform.

In that regard, iOS 6 is nowhere near as audacious as iOS 2, which brought the App Store, or iOS 5, which cut the iTunes cord, took us to the iCloud, and brought Siri along for the ride. It doesn't remove user and developer pain points the way iOS 3 did with cut/copy/paste or iOS 4 did with multitasking. iOS 6 is more of a soft-reset and a way to set the stage for iterations to come. It strips Google almost completely out of iOS and introduces an all-new Maps app and increased Siri intermediation. It introduces Passbook, which isn't a digital wallet, but does provide a single repository for tickets and balances, and starts to make mobile transactions convenient and comfortable. It abstracts and outsources sharing with new Facebook and enhanced Twitter integration, so Apple no longer has to worry about creating awkward new networks of their own. And it increases support for China, which has become a hugely important market for Apple.

But if iOS 6 is about Apple and the future, what does that mean for iPhone, iPod touch, and iPad users today? Is there still enough here, individually and in sum, to make it a compelling and competitive update?

Let's find out...

iOS 6 in 6 minutes

If you don't have time to read all the words below, but you still want to see all the highlights -- Maps, Siri extensions, Passbook, Guided Access, Shared Photo Streams, and more -- then here's everything you need to know about iOS 6 in just 6 minutes.

iOS 6 preamble

Before we get to the good stuff, and break down all the features of iOS 6 from iCloud and Lock screen, and app by app in the order in which they appear on the iPhone 5 Home screen, there's some house keeping to get out of the way first.

Previously on iOS...

iOS 6 is the latest in a series of iPhone, iPod touch, and iPad updates going back to the original iPhone OS released in June of 2007. Rather than cover previously released features again, you can find full reviews for earlier versions here:

• iOS 5.1 for iPhone and iPad
• iOS 5 for iPhone and iPad
• iOS 4.3 for iPhone, iPad
• iOS 4.2 for iPhone | iOS 4.2 for iPad
• iOS 4.1 for iPhone
• iOS 4 for iPhone
• iOS 3.2 for iPad
• iOS 3.1 for iPhone
• iOS 3.0 for iPhone
• iPhone 2.2 for iPhone
• iPhone 2.1 for iPhone
• iPhone 2.0 for iPhone

How to update to iOS 6

iOS 6 is available as an over-the-air (OTA) update right on your iOS device, or as a tethered update over USB Dock cable via iTunes on the desktop. OTA is typically faster as it updates in place. iTunes, however, allows for a clean install if you worry about a bad backup restore causing battery life or other issues.

iOS 6 compatibility

iOS 6 is compatible with the following iOS devices. Not all features are available for all devices, especially older devices, but they'll all be able to run iOS 6 apps (binary compatible) which is a huge advantage going forward.

• iPhone 5, iPhone 4S, iPhone 4, iPhone 3GS
• iPad 3, iPad 2
• iPod touch 5, iPod touch 4

iOS 6 feature availability

Not all iOS 6 features are available in all countries or regions. For example, standard maps are available in 177 countries as of this writing, while Siri movie showtimes are only available in 3. Some features will be added to additional regions in October, while it's likely data availability and partnership deals will mean longer waits for many others. Apple provides the following feature-by-feature, region-by-region availability breakdown

Read More

Daily Tip: How to configure VPN access on your iPhone, iPad

Curious how to configure access to a VPN client on your iPhone, iPod touch, or iPad? L2TP, PPTP, and IPSec VPN support are all built right into iOS and we'll show you how to set them up after the break!

One thing to note is that you'll need to make sure you have all the settings and information about your VPN service handy. Some companies will not allow mobile access to a VPN, and some carriers limit 3G VPN access to business accounts, so that's another thing you'll need to check on before attempting to add one.

These screenshots show iPhone setup but iPod touch and iPad are similar.

First you'll need to configure your VPN by adding the settings for your VPN (in most cases, these are provided by the system administrator or IT person at your company).

To configure your VPN, do the follow:

1. Tap Settings
2. Tap General
3. Tap Network
4. Tap VPN
5. Tap Add VPN Configuration

6. Along the top you will see some tabs, you'll need to select which type of configuration you need. In most cases, you'll choose IPSec (unless your system administrator has told you different). For this example, I've used IPSec.
7. Enter the information for your VPN in the corresponding fields. If you used a proxy, make sure to enable it towards the bottom of the settings page.

8. Tap Save

You've now configured your VPN for use. Now you'll need to turn it on.

1. From your homescreen, tap Settings

2. Under the main settings page, you'll now see a VPN option, this only appears when you have a VPN configured. Toggle the switch to On

3. Your phone should connect to the VPN. If an error message pops up, go back into your VPN settings and make sure all your settings are input correctly.

That's it! If you guys have ever used this, let us know your input too. Have any issues setting up a VPN? Check out our TiPb Forums to get helpful from many of our awesome community members.

Tips of the day will range from beginner-level 101 to advanced-level ninjary. If you already know this tip, keep the link handy as a quick way to help a friend. If you have a tip of your own you'd like to suggest, add them to the comments or send them in to . (If it's especially awesome and previously unknown to us, we'll even give ya a reward...)

Read More

How to Setup VPN for iPhone

If you looking for affordable VPN for iPhone, click here to visit HMA VPN. It costs $7/month only with unlimited usage.

Setting up VPN for iPhone is very easy. Apple iPhone come with VPN support that you can connect VPN in iPhone without any difficulties. Here list the simple steps to make the connection:

1. Sign up an account with VPN provider. I am using HMA VPN at $7/month and the account can be shared with my iPad, Mac and Apple TV.
2. HMA should give you login information like IP address, user and password. Make sure the account is L2TP, PPTP or IPSec. OpenVPN is not supported in iPhone
3. On your iPhone, touch the Settings app, select General > Network > VPN > Add VPN Configuration
4. Enter the information you got from HMA

Now the basic configuration is done. Now you have the option to turn on/off VPN when needed. Make sure you see the VPN on top if you are surfing secured information in public environment.

What to do with VPN for iPhone?

• You may watch Netflix on iPhone outside US when you connect to VPN server in United States

• You may make secured but cheap overseas call with Skype over VPN
• You may unblock access to Facebook and Twitter if you are physically located in China.
• You may even listen to Last.fm or Pandora when you are travelling aboard

Read More