Unpkg.com hacked?
I've checked on both my local machine and on a VPS I run, and the following URL is 302 redirecting to a malicious JS script which pops up a confirmation window and then redirects to ads:
SOURCE URL: https://unpkg.com/react@latest/dist/react.js MALICIOUS REDIRECT: https://compliance-jessica.xyz/a.php
This is the URL recommended for in-browser development use by https://facebook.github.io/react/docs/installation.html
Can anyone else replicate this?
17 comments
[ 4.9 ms ] story [ 46.1 ms ] threadTweet from them:
https://twitter.com/unpkg/status/852655106562564098
> We're experiencing some issues and working on it. Will post updates here as soon as we know more.
EDIT: apparently it was a bad nameserver update: https://twitter.com/unpkg/status/852658357034827776
Evidence here: https://pastebin.com/wVCABkaA
https://twitter.com/unpkg/status/852660203275276289
Any way to fix???
We got hit pretty hard for the 50 minutes or so the problem existed, Dropbox host their JS SDK lib on there...
Suddenly every visitor was reporting alert dialogs saying they had a virus and our votes dropped off a cliff.
Last time I ever go against my gut and semi-trust anything.