Redirections for many threads

[Norm]

Hi,
I'm gettting redirected to:
**link removed for security**
from many threads this morning.

Norm

[newbie]

This is the only thread where I don't get redirected
The problem is quite widespread in many .php based sites as of today, in which I'm led to believe that it's an issue of a small script injected into the pages, where the fix is to delete the script and close the hole .

I'd dread to think how many copies of that script persist on a forum like this though

[copeg]

I am not getting redirected, but did get a few connection refused a few moments ago. Are you still getting redirected?

[JavaPF]

Hello guys,

A quick update..
Yes there was an issue this morning. This issue has now been resolved and I have put precautions in place to make sure it doesn't happen again.

Thanks for reporting.

[newbie]

Anything interesting regarding the issue? Seeing as it was a regular occurrence yesterday or was it just some small hole? :p

[JavaPF]

Anything interesting regarding the issue? Seeing as it was a regular occurrence yesterday or was it just some small hole? :p

Being compromised is always interesting although highly frustrating. I don't want to go into too many details for security reasons.
I'm not 100% sure how it happened but I am confident the issue is resolved and hopefully won't happen in the future.

How do you know it was a regular occurrence yesterday? What other sites were targeted?

[Norm]

Do a google on *****

[Freaky Chris]

Do a google on *****.

Be careful with this, alot of stuff that gets returned is infected.

[Norm]

Is this redirection problem like a virus that can be communicated to your PC or is it a hack to a server changing what that server returns?

[Freaky Chris]

I don't know the full details, but from what I have seen, I'm more than happy to avoid this. I run local web servers which are quite often open to the WWW so I can share design ideas etc with people. My anti virus has been going mad on a loty of sites linked to *****, as with most things one infection leads to another.

[chronoz13]

alot of stuff that gets returned is infected.

yeah i got a trojan one

[JavaPF]

Guys I hope you don't mind but I have edited out any reference to the word in the URL because I don't want us coming up in the search results for it.
I might be too overly cautious here but I don't want any hackers finding this site as a result of searching for that phrase as we may still potentially be vulnerable.

[Norm]

Sorry, didn't mean to cause any more exposure.

[Freaky Chris]

Yeah, sorry JavaPF. Thanks for the work done on this.

[chronoz13]

ahh excuse me guys, i really cant get up with the conversation due to my language boundaries, but it seems like i just said an inappropriate word, sincere apologies here as well.

[JavaPF]

No worries people! Like I say, I'm probably being over cautious.

[Freaky Chris]

Seems unlikely you are being over cautions. Whilst it was a wide spread attack, which leads me to believe unless the same happens again in the near future it shouldn't be too much of a problem. But advertising yourself to people of that nature, is just plain silly and should be avoided at all costs. IMO.

[JavaPF]

Very true. Good call. You can never be too careful.
I don't want people to see we have been vulnerable to this attack in the past and try it again.