Malware Attack?

Mobhack · #1 November 4th, 2015, 12:45 PM

The attack site warning appeared again today, so I went past it and into the site regardless.

My Noscript add-on to Firefox then showed a new script on the forum page today that was not there yesterday when I reinstalled Noscript on top of Privacy Badger.

suchka46.pw

As it looked dodgy, I blocked that!.

A Google search on that name brought up a very few results, but one page (in Polish?) seemed to be about phishing, mentioned it in there somewhere.

Privacy Badger only has "newssltest.com" flagged as medium (block cookies) risk as a possible tracker - I presume that one is part of your own site's code?.

Ghostery is also running - it shows something titled "OpenX" as advertising/tracker (blocked).

Both of those were as before - when no attack warning came up, so the "suchka46.pw" script appears to be culpable?.

cheers
Andy

Tim Brooks · #2 November 5th, 2015, 08:28 AM

This appears to be a fake attack. Nothing is at risk. We are working with Google to resolve the block.

garion333 · #3 November 10th, 2015, 10:38 AM

Is it actually an attack or is it related to the vBulletin zero day exploit?

http://securityaffairs.co/wordpress/...y-patches.html

http://www.vbulletin.com/forum/forum...password-reset

http://www.vbulletin.com/forum/forum...-through-5-1-9