DDoS Attack on SEO Hero
Attack was performed from:
<form action="https://seoheronews.com/api/feedback/send" id="form" method="POST">
<input type="hidden" name="ifohezoiezghfezhipefzhoihezfiohioefzohiezf">
DDoS attack was made through the iframe which was located on site www.rpgsoluce.com.
This iframe was put to dozens of sites using iframe advertising banner.
This iframe banner is reloading constantly without visual effect for user and it sends requests to target site (DDoS target).
Here is example of such banner
So, this banner loads iframe http://www.rpgsoluce.com/forum/cache/iframe1.html which, in turn, performs a request to SEOHeroNEWS.com.
To find out his, we placed HTML page to /api/feedback/send which collected information about attackers' sites and sent it to seoheronews.com using their methods.
Here is short list of sites, which were used for attack via advertising: