Return of Draculin
It's not the first time I have to deal with spammers, hackers and all sorts of "social engineering" ... even from ACC! A long time ago one of my own students sent me deliberately several viruses from a disguised e-mail. Our SpecialKiwis websites have been attacked by spammers and spam-bots before, but this time was a nasty one! They hacked into a system file, causing all visitors coming from a search engine like google, yahoo, live, etc... to be redirected to a malware site. That's very bad, considering that most of our visitors are first time visitors coming from health related directories or web searches... and that the hacked file is ironically the one that is supposed to secure the site from attackers. This is part of the notification I got from google:
The problem is now fixed, but I'm concerned how bad is it going to be the next time.
Dear site owner or webmaster,
We recently discovered that some of your pages can cause users to be infected with malicious software. We have begun showing a warning page to users who visit these pages by clicking a search result on Google.com
We strongly encourage you to investigate this immediately to protect your visitors. Although some sites intentionally distribute malicious software, in many cases the webmaster is unaware because:
1) the site was compromised
2) the site doesn't monitor for malicious user-contributed content
3) the site displays content from an ad network that has a malicious
If your site was compromised, it's important to not only remove the
malicious (and usually hidden) content from your pages, but to also
identify and fix the vulnerability.