DNS and NTP servers are not the only publicly accessible resources that can be misused to amplify DDoS attacks.
Rublon provides automatic two factor authentication for web applications.
During an internal assessment, Duo Security found a vulnerability in their popular WordPress two-factor authentication plugin that completely bypasses the security measures provided by it.
WordPress 3.7, named Basie, is available for download or update in your WordPress dashboard.
Robert Abela is a WordPress Security Professional and founder of WP White Security.