Support » Plugin: Wordfence Security - Firewall & Malware Scan » Exploiting Twitter share links

  • Resolved jakeswrites

    (@jakeswrites)


    Hi,

    I’ve noticed that on my site I’ve had a lot of attempted attacks recently trying to access my URLs adding ?share=Twitter after them. This is sometimes as the following URL as well as adding a variety of characters.

    Example: https://jakesymons.com/mental-health/blogging-tips-mhaw-2020/?share=twitter

    The reason for the block is “exceeded the maximum number of page not found errors per minute for humans”

    When I follow the links with other characters added it takes me to the Wordfence page which shows a 403 error. I’m not putting those in the public domain as I’m unsure on the risk.

    I couldn’t find much about this error online so I was wondering if anyone here knew how ?share=Twitter links can be vulnerable?

    Is there anything I can do to protect myself from them in addition to running Wordfence?

    Thanks,

    Jake

    • This topic was modified 1 month, 1 week ago by jakeswrites.

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Hey @jakeswrites,

    Without further investigation, it’s hard to say exactly what they’re trying to accomplish. My hunch would be to spoof a Twitter account to send messages from. It looks like it’s getting blocked by the Wordfence Rate Limiting feature. At this point, there’s nothing else for you to do. There’s only so much we can do to prevent attacks, it’s more about making sure they aren’t successful, which it looks like Wordfence is doing.

    https://www.wordfence.com/help/firewall/rate-limiting/

    Please let us know if anything else comes up.

    Thanks,

    Gerroald

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.