Redirection of forum.nanfa.org url POSSIBLE MALWARE PROBLEM. PLEASE READ THREAD AND PROTECT YOURSELF!
Posted 30 May 2014 - 01:05 PM
Posted 16 July 2014 - 10:37 PM
This happens on my work machine, home machines, tablet...all of which are clean and scanned regularly. FWIW, reproducing it can be difficult, because it only redirects the first time you click the link that's embedded - either in the Google search or wherever (other site links do it too, including those embedded in email messages). It may require that you be caching your login; we're not sure - we were able to get it to do it when not logged in.
We got a truly "clean" machine and image that he uses to test with. Does it for him. We know it is NOT client side (i.e., our machines). He isn't familiar with the IP Board software NANFA uses, so we surfed. We found a pretty good number of hacker board references explaining how to inject malicious code for URL redirect scripts, and one blog that explains how to fix it.
The latter is the only link we found that I'm willing to post: http://peter.upfold....url4short-mess/ This explains the problem fully, the research done to discover it, and how to fix it.
Hope this will help you solve the problem before I set off any more alarms at work
Edited to add -- the comments also point out other places the code is sometimes injected. Worth reading those as well.
Edited by Stickbow, 16 July 2014 - 10:40 PM.
Posted 18 October 2014 - 06:03 PM
Is the problem not fixed yet? I have never encountered any of this kind of skronk here.
Yes, my main computer I enter the page through bookmarks so do not see it, but on work computers and my tablet where I enter through a browser I do see it.
Posted 18 October 2014 - 11:34 PM
Posted 23 October 2014 - 03:00 PM
Posted 23 October 2014 - 04:56 PM
Thanks for the vote of confidence Uland. I hope that the problem just vanishes with the upgrade. There are fixes/patches for this problem, but when you are playing with many thousands of posts, some with great information, it makes one rather hesitant.
I would bet the update will fix this. Fingers crossed.
Posted 23 October 2014 - 06:26 PM
Reply to this topic
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users