Hi guys,
Still having some old TGPs running on their own, my host and I have received today emails about issues with the skim traffic Trade Expert is using on the free version of the script.
So if you still use Trade Expert script I would like to know if you received such emails.
Received from netcraft.com
Quote:
Hello,
We have found a page on your website which is currently being used to serve cryptocurrency investment scams, it is likely that a criminal has compromised your website. You can see the page here:
hxxp://www.mydomain.com/te3/out.php?u=http://outanddirect.com/wp-includes/rest-api/search/professionals/alerter.php/yatqv/wht/?lead=f11yyeah1rs00
We understand that this site is simply a redirect, however this site is directly involved in the attack as it redirects to fraudulent content. Plus, the redirect is controlled by a fraudster so can be reused for future attacks, making its removal all the more important.
Would it be possible to have the fraudulent content, and any other associated fraudulent content, taken down as soon as you are able to?
These scam sites impersonate reputable news sites and serve articles that advertise various scams, including fraudulent cryptocurrency trading platforms and diet products. Articles for different locales are served based on the user's geo-IP to maximise the chances of deceiving unsuspecting users in different regions.
More information about the detected issue is provided at https://incident.netcraft.com/code-t...to-such-sites/
Kind regards,
Netcraft
|
Even if you're not using Trade Expert, are the NetCraft reports reliable ?
Is there any proof that the traffic is sent from my own domain to such redirected pages and not pasted directly in the browser address ?
Could it be used fraudulently to ask my host to close my pages ?
Is it used to advertise me to subscribe Netcraft ?
Thanks for your help.