Quote:
Originally Posted by SmokeyTheBear
well without knowing the details its hard to say but i have noticed a few creative "hacks" recently.. most of the time they just insert some iframe in sites they hack/infect but recently i have noticed sites scripts get hacked in the EXACT same fashion, a small skim added to the redirect but without knowing the details its hard to say..
|
I ran a Perl script with LWP to GET the "page", i.e. the sponsor link. The link is supposed to redirect to the real site but some random number of times it was redirecting to a couple different sites in a completely different program.
But you didn't have to even run any script. You could just click on the links and it would redirect to the wrong sites. The links are similar to the silvercash, adultplayersclub, sunnydollars etc. ones.
If the server was hacked etc., then that wouldn't explain why the redirecting stopped on Monday when everyone was back at work and the "techs" say there's nothing wrong and they didn't find anything.