Unmask Parasites. Blog.
msgbartop
Unmask Parasites - Check your web pages for hidden links, iframes, malicious scripts, unauthorized redirects and other signs of security problems.
msgbarbottom
Loading site search ...

Tweet Week: August 23-29, 2010

30 Aug 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

AV vs exploits, phpMyAdmin update, web chat with Adobe & Mozilla … »»


Tags:

Tweet Week: August 16-22, 2010

23 Aug 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

ColdFusion vulnerability, compromised NetSol widget, Google warnings in Spanish, site ownership verification using Analytics … »»


Tags:

Tweet Week: August 9-15, 2010

16 Aug 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

SQL-injection, MediaTemple issues, exploited phpMyAdmin vulnerability … »»


Tags:

Pqshow .org Scripts – New Plague On MediaTemple Sites

14 Aug 10   Filed in Website exploits with 12 Comments

New week — new attack on MediaTemple-hosted sites.

Almost everything remains the same as in the last week’s attack I described here. The only difference is the new script and the new remote malicious site – bl .pqshow .org.
Continue »»


Tags:

Malicious “ads” and “bars” on RackSpace & MediaTemple

08 Aug 10   Filed in Website exploits with 16 Comments

Right before this week-end I noticed an increased number of sites hosted on MediaTemple and RackSpace coming to Unmask Parasites with the same problem — their sites are blocked by Google and their diagnostic pages mention the following five domains: “myads .name“, “adsnet .biz“, “toolbarcom .org“, “mybar .us“, “freead .name“.
Continue »»


Tags:

Tweet Week: August 2-8, 2010

08 Aug 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Fingerprinting web apps, hole in Adobe Reader, Unmask Parasites update … »»


Tags:

Keygenguru .com Hack in Search Results

04 Aug 10   Filed in Website exploits with 1 Comment

Last year I wrote about two elaborate server-wide hacks that hijacked web server (Apache) processes and intermittently served malicious content instead of requested legitimate web pages.

A year later, every now and then I still see servers affected by this sort of hack. I easily recognize recent modification of this attack when I see links to keygenguru .com in Unmask Parasites reports. Those modifications are slightly different from what I described in my goscanpark article. This time not only do the malicious processes serve JavaScript redirect code but also provide some HTML with links to pirated software and movies. This HTML code gets indexed by search engines which helps hackers promote their illegal resources.

Side effect

A side effect of this “black-hat SEO modification” is when people search for domain names of affected sites, they see something like this in search results:
Continue »»


Tags:

Tweet Week: July 26 – August 1, 2010

01 Aug 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

Hijacked subdomains, spyware in Firefox, lists of website security tools, … »»


Tags:

Tweet Week: July 19-25, 2010

25 Jul 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

VBulletin and Soholaunch security problems, Unmask Parasites milestone … »»


Tags:

Tweet Week: July 12-18, 2010

18 Jul 10   Filed in Tweet Week with 0 Comments

Selected short messages and links you might have missed if you don’t follow me on Twitter.

nginx as reverse proxy, WP redirects on MediaTemple, Image search spam … »»


Tags:
« Previous Posts
sidebartop

About this blog

Occasional posts from the developer of
Unmask Parasites about things that hackers already know and site owners should know (if they don't want to be victims).

Exploit reviews, security tips, and all that jazz.

This blog in the news

Get free updates:   RSS   Email   Twitter
sidebarbottom
sidebartop

Recent Posts

sidebarbottom
sidebartop

Categories

sidebarbottom
sidebartop

Recent Comments

sidebarbottom
sidebartop
sidebarbottom
© Unmask Parasites. Blog. / Design: Smashing Wordpress Themes