Malware on WTF
Page 1 of 2 1 2 LastLast
Results 1 to 10 of 11
Like Tree10Likes

Thread: Malware on WTF

  1. #1
    WTF Veteran watchabit's Avatar


    Join Date
    Dec 2010
    Location
    SW GA
    Posts
    977

    My Watchbox

    Default Malware on WTF

    Only on my IPad, I get the "you've won a $1000 wal-mart gift card" popup. Takes over the page. I can open another window and it'll go for a bit but that page will be attacked too. No other websites, I can surf fine anywhere else.
    I'm sure the ios needs updating but I was wondering why it's just on the wtf forum.
    Bill

  2. #2
    Super Moderator WTF Veteran


    Join Date
    Sep 2011
    Location
    Ontario, Canada
    Posts
    5,484

    My Watchbox

    Default

    I'm not seeing it at all. Usually i would suggest you may need to run Malwarebytes on your IPad to rid yourself of the file that's triggering that stuff.

  3. #3
    WTF Veteran


    Join Date
    Jan 2015
    Location
    Alabama
    Age
    65
    Posts
    652

    My Watchbox

    Default

    Quote Originally Posted by watchabit View Post
    Only on my IPad, I get the "you've won a $1000 wal-mart gift card" popup. Takes over the page. I can open another window and it'll go for a bit but that page will be attacked too. No other websites, I can surf fine anywhere else.
    I'm sure the ios needs updating but I was wondering why it's just on the wtf forum.
    Bill
    THERE ABSOLUTELY IS malware on this message board. I have experienced the exact same occurrences related to THIS MESSAGE BOARD ONLY, AND NOWHERE ELSE. I’m getting malware redirection more and more frequently, when connecting to this site. The Watchtalk Forums are infected with malware, and someone needs to deal with it. I’m a retired I.T. Systems Engineer, who specialized in Cybersecurity. I was thinking of just quietly backing away from this site, but that wlould not be right without at least stating the obvious, and allowing the hosting team the chance to resolve these problems.

    Sincerely,

    Thomas Gaylor
    "There is nothing so fretting and vexatious, nothing so justly terrible to tyrants, and their tools and abettors, as a free press.” — Samuel Adams, 1768

  4. #4
    WTF Veteran


    Join Date
    Jan 2015
    Location
    Alabama
    Age
    65
    Posts
    652

    My Watchbox

    Default

    Example:

    http://168.sedapmeesiam.gold/click/2...affid=IMB_RDL:

    When transitioning to another sub-forum on WTF just now, I was redirected to the above URL.
    "There is nothing so fretting and vexatious, nothing so justly terrible to tyrants, and their tools and abettors, as a free press.” — Samuel Adams, 1768

  5. #5
    WTF Veteran watchabit's Avatar


    Join Date
    Dec 2010
    Location
    SW GA
    Posts
    977

    My Watchbox

    Default

    Quote Originally Posted by mikeyt_53 View Post
    I'm not seeing it at all. Usually i would suggest you may need to run Malwarebytes on your IPad to rid yourself of the file that's triggering that stuff.
    Mikey I'm sure an ios update on my ipad would prob remove said file, but it's a school ipad and it has to go back through their I.T. guys. I can deal with it by using my desktops until I get it updated.
    But I did want to let you know what I was experiencing in case it propagates or otherwise gets worse.
    mikeyt_53 likes this.

  6. #6
    Administrator WTF Veteran administrator's Avatar


    Join Date
    Mar 2012
    Location
    Far Side of the Moon
    Posts
    710

    My Watchbox

    Default

    Hey there,

    It's on our end, not yours. There is an exploit with Apple devices and some site that's allowing the popups in. They sneak in through the regular communication that places regular ads here. We're working on it, and for the short term if you report the link that it takes you to, I can put a specific block so at least that link shouldn't come back.

    This happens because malicious coders buying ad space from Google, Rubicon, and all manner of other providers, and writing ads that trigger those obnoxious redirects when you're on a desktop skin on a mobile device. It's why we have mobile skins. It's also not localized to us, it's a global ad issue, CNN, buzzfeed, msnbc, any site that uses these adsense type ads. We're trying to catch them as we get them

    Here's an article on it if you want to read

    https://adexchanger.com/publishers/f...oney-blocking/

    One solution is to use enhanced mobile view (not available on IPads/only vBulletin sites) or use tapatalk.

    Another is to turn off javascript if you're using safari, but this will make some functions not work. Settings > Safari > Advanced > Turn off Javascript

    An apple user reported that they turned it off for a while and turned javascript back on and the pop-ups came up less.

    Attachment 180185

    Maybe give this a try and see how this goes?

    Ed

  7. #7
    WTF Veteran


    Join Date
    Jan 2015
    Location
    Alabama
    Age
    65
    Posts
    652

    My Watchbox

    Default

    Quote Originally Posted by watchabit View Post
    Mikey I'm sure an ios update on my ipad would prob remove said file, but it's a school ipad and it has to go back through their I.T. guys. I can deal with it by using my desktops until I get it updated.
    But I did want to let you know what I was experiencing in case it propagates or otherwise gets worse.
    The problems you are experiencing have nothing to do with your iPad.
    watchabit likes this.
    "There is nothing so fretting and vexatious, nothing so justly terrible to tyrants, and their tools and abettors, as a free press.” — Samuel Adams, 1768

  8. #8
    WTF Veteran


    Join Date
    Jan 2015
    Location
    Alabama
    Age
    65
    Posts
    652

    My Watchbox

    Default

    Quote Originally Posted by administrator View Post
    Hey there,

    It's on our end, not yours. There is an exploit with Apple devices and some site that's allowing the popups in. They sneak in through the regular communication that places regular ads here. We're working on it, and for the short term if you report the link that it takes you to, I can put a specific block so at least that link shouldn't come back.

    This happens because malicious coders buying ad space from Google, Rubicon, and all manner of other providers, and writing ads that trigger those obnoxious redirects when you're on a desktop skin on a mobile device. It's why we have mobile skins. It's also not localized to us, it's a global ad issue, CNN, buzzfeed, msnbc, any site that uses these adsense type ads. We're trying to catch them as we get them

    Here's an article on it if you want to read

    https://adexchanger.com/publishers/f...oney-blocking/

    One solution is to use enhanced mobile view (not available on IPads/only vBulletin sites) or use tapatalk.

    Another is to turn off javascript if you're using safari, but this will make some functions not work. Settings > Safari > Advanced > Turn off Javascript

    An apple user reported that they turned it off for a while and turned javascript back on and the pop-ups came up less.

    Attachment 180185

    Maybe give this a try and see how this goes?

    Ed


    Thanks for the update.
    Spaceview M2 likes this.
    "There is nothing so fretting and vexatious, nothing so justly terrible to tyrants, and their tools and abettors, as a free press.” — Samuel Adams, 1768

  9. #9
    WTF Veteran


    Join Date
    Jan 2015
    Location
    Alabama
    Age
    65
    Posts
    652

    My Watchbox

    Default

    Quote Originally Posted by administrator View Post
    Hey there,

    It's on our end, not yours. There is an exploit with Apple devices and some site that's allowing the popups in. They sneak in through the regular communication that places regular ads here. We're working on it, and for the short term if you report the link that it takes you to, I can put a specific block so at least that link shouldn't come back.

    This happens because malicious coders buying ad space from Google, Rubicon, and all manner of other providers, and writing ads that trigger those obnoxious redirects when you're on a desktop skin on a mobile device. It's why we have mobile skins. It's also not localized to us, it's a global ad issue, CNN, buzzfeed, msnbc, any site that uses these adsense type ads. We're trying to catch them as we get them

    Here's an article on it if you want to read

    https://adexchanger.com/publishers/f...oney-blocking/

    One solution is to use enhanced mobile view (not available on IPads/only vBulletin sites) or use tapatalk.

    Another is to turn off javascript if you're using safari, but this will make some functions not work. Settings > Safari > Advanced > Turn off Javascript

    An apple user reported that they turned it off for a while and turned javascript back on and the pop-ups came up less.

    Attachment 180185

    Maybe give this a try and see how this goes?

    Ed


    Thanks for the update.

    Edit: That’s a good article on the current state of adware based redirection of end users.
    "There is nothing so fretting and vexatious, nothing so justly terrible to tyrants, and their tools and abettors, as a free press.” — Samuel Adams, 1768

  10. #10
    WTF Veteran watchabit's Avatar


    Join Date
    Dec 2010
    Location
    SW GA
    Posts
    977

    My Watchbox

    Default

    Thanks much guys
    ThomG likes this.

Page 1 of 2 1 2 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
 

ShowCase, Vendor Tools vBulletin Plugins by Drive Thru Online, Inc.