I Dare You To Steal My Blog

[dravid]

"You can’t with this new WP plugin. Developed by the master himself, alex king.

[Skolor]

So, essentially, it makes it so that in order to log into your site, you get a phone call that you have to respond to?



Also, is that a challenge? If this is a real challenge, with no legal ramifications of succeeding, I'll take a swing at it.

[Sneakyheathen]

I agree with Skolor. I could steal your blog, and no phone is gonna stop me! (The legal system might) You gotta go in from the outside.

1) Claim your blog on all social networking sites
2) Start a smear campaign on MY BLOG about how you stole yours from ME
3) Get my twitter users to spam your comments and adsense
4) ???
5) Moneys from the giant settlement and oh yeah, I'd have your blog.

But you know...anybody would think that...right? I'm not crazy.

Edit: I'm totally joking, by the way. Don't call like, PETA on me, not that they do stuff.

[Skolor]

Well, I was actually referring to going in through the blog and taking it over. Its rather ironic, but the most exploited software for getting into any system is its security software. Want to get into a system? Find out their security system, and a way to exploit it, and you've suddenly got an amazing amount of access.

Widgets are the worst for this; they're given considerably more access than they need, and are one of the most popular methods of attack. I can think of the easiest method of attack right not, a serious one: write a script to try and log in as you every 30 seconds or so during the busiest times of day. Sure, I may not be able to get into your blog that way, but you're left with two choices: either disable the system or get a phone call every 30 seconds.

[Johnt447]

I don't know why someone would want to steal a blog lol

[amabaie]

That's my question, too. It's sort of like daring someone to tickle a wildebeast...what's the point?

[crankynu]

I worry more about my phonebill then someone hacking my blog.
I can always get backups if it gets hacked.. Phonebillls don't magically go away however.

[rjleaman]

Quote:

Originally Posted by amabaie

It's sort of like daring someone to tickle a wildebeast...what's the point?

ROTFL
I am so using that, next time someone asked me to do something totally useless!

[Skolor]

Man. I wish I had a wildebeast now.


To that end, I can think of plenty of reasons to hack a blog, and most of them don't involve destroy any of your content. Any attacker whose intent is destructive usually is some teenage kid in their parents basement who thinks they're a 1337 hax0r, dude. Any more professional hacker is in it to make money, and destruction rarely makes you money. What they'll be doing is adding to your content, hi-jacking your ads, forcing your readers to all download spy-ware, and the like. A lot of attacks are centered around hosting phishing sites. Its real easy to throw together a login screen that looks like a bank. Its a lot harder to keep one hosted for more than a week or so, so they usually put phishing sites on someone else's hosting.


As to the relevancy of stealing a blog, my main concern would be the ability to upload files/change existing files. If you can do that from your WP login, and someone gains access to that, they've got complete control over your server/portion of shared hosting.