Website Redirect To Spam Site Alan Ogden posted this on

Increasingly common is javascript or php scripts embedded on a site which redirects visitors to an attacker’s page allowing trojan downloads and spam. Usually this code is embedded in the html of a site and can be encoded to shield it from quick glances.

A new feature seen recently masks the script from being called unless the visitor is from a certain country or has come from a certain search engine. As most people cannot see this script and flag something is wrong to the owner, the script may go undetected for some time. For example, we have just seen a site that redirects visitors only if they are from the USA, and have clicked on the site link at Yahoo. May give the attacker less traffic overall initially but if undetected will yield better results over time.

Comments are closed.