Ask HN: What exactly is going on? Hacked site.
I followed a link to what I thought was landolakes.com and was rapidly redirected to a pharmaceuticals site.
How strange I thought, and checked the link which appeared to be legitimate.
Then I Googled drugs site:landolakes.com and got pages of hits that reference various pharms.
Today it seems fixed. Does anyone know what this vulnerability is/was?
5 comments
[ 22.2 ms ] story [ 126 ms ] threadAnyway, there are an infinite number of ways sites can be hacked. It was probably just a dumb mistake, as nearly all of the hacked sites I've seen have been (when I was contracting, about a quarter of my clients hired me for forensics and cleanups on exploited servers). Weak passwords, old versions of software with known exploits, unnecessary service running that wasn't properly secured because no one was paying attention to it, etc.
I asked here because I thought perhaps a curious person would read this and find it interesting.
I don't think there is a specific vulnerability here, just whatever vulnerability the black hat SEOs can find to exploit.
So perhaps a Cold Fusion vulnerability.