• 2 Posts
  • 10 Comments
Joined 1 year ago
cake
Cake day: June 17th, 2023

help-circle





  • Yeah, it depends on what you mean.

    In many cases malware and phishing is hosted off other compromised sites. So, they build a list of Wordpress sites with vulnerabilities, and use the vulnerabilities to host their files on them. For example, imagine “legitimate-medical-site.net.com” is a real site. The attacker will use the exploit to upload malicious files in there somewhere like “legitimate-medical-site. net. com/qwertasdf/invoice.pdf”.

    If the site gets blocked or shutdown it’s no loss to them.

    Another technique, especially phishing wise, they will have a semi-plausible domain name (e.g. youbank-security-server .con). But they will register heaps of these. There are tonnes of top level domains that do next to no checking. These things cost a few bucks, so having it taken down is not a problem.

    The combination of burner sites and domains mean they have a window of opportunity to run their attacks and scams before other protections kick in.


  • We’ve had many of these. We just leaver up the boards and tear them out.

    You could plunge cut with a circular saw along the edge. Then work a chisel under it and just tear out the floor boards any way you can.

    Then for the screws, I either tear them out with pincer pliers for the shallow ones (you can get decent leverage with pincer pliers). Or just cut them flush with the joists and leave them there (quick work with an angle grinder and cut-off disc).

    PS. Sorry been trying to reply to you for a few hours but my client wouldn’t connect.