ContentRanch | Shalom Issenberg

"Web Content Doesn’t Grow On Trees; It Comes From The Ranch!"

• Home
• Geo Search Tool
• Shalom Issenberg BIO
• About The Author

Social Profiles

Recent Posts

• Finally I can work without cigarettes!
• The Day The Media Died | Mad Avenue Blues by L. McDuff
• A Favor Post: Link Building Through Favors
• Google Analytics. Should you use it?
• Outsourcing Effectively: Everything you need to know!
• Did Google AJAX break SEO for FireFox? The answer is NO!
• Little competition does not mean little opportunity: Case study on the textile vertical online
• Yale and Other .edu Sites Are Targeted By Hijackers
• 6 Different Types of Marketers
• If Video Killed The Radio Star, What Did Deezer do?
• The Onion YouTube Contest
• Proud To Be A DMOZ Editor
• serpDRs.com : New Internet Marketing Social Site / Community
• No New Content On The Ranch
• Google Page Rank Update July 2008

Search

License

Categories

• Analytics
• Blog Content
• Business
• Content Optimization
• Content Ranch
• Directories
• Domains
• Email
• Funny
• Google
• Google Adsense
• Google Adwords
• Internet Security
• Link Building
• Marketing
• outsourcing
• SEO: Search Engine Optimization
• serpDRs
• Social Media
• Uncategorized
• Web 2.0
• Web Content
• Website Design
• Website Ideas
• Wordpress

Archives

• December 2009
• June 2009
• April 2009
• March 2009
• February 2009
• December 2008
• November 2008
• October 2008
• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007

Tools

• Geo Search Tool

« 6 Different Types of Marketers | Main | Little competition does not mean little opportunity: Case study on the textile vertical online »

Yale and Other .edu Sites Are Targeted By Hijackers

By Shalom Issenberg | December 15, 2008

University and .edu sites are the biggest victims of spam and hijacking attempts. Webmasters who manage PHP directories, forums, and scripts understand the threats better than anyone.

Recently I had one of my own site hijacked by a viagra spammer that literally forced me to take a fully populated directory offline. In all fairness, the site was poorly scripted, and virtually ignored, otherwise it probably could have been fixed easily, although still very frustrating. The spammer populated the directory categories with fake listings that redirected the entire category pages to other spam sites (all through automated scripting – creating thousands of redirects).

If you browse .edu sites looking for link opportunities, you will have come across a lot of closed forums and guestbooks that have fallen victim to spam. Most of the time .edu webmasters will close the forum or internal security will prevent scripts from being exploited further by simply removing the ability to post to forms.

I recently noticed that a huge number of hijacked .edu sites including Yale University, are showing up in Yahoo SERPs. The hijacking involves a spamming script which exploits forums,  creating redirects to MFA (made for Adsense) pages. If you look closely you can see that the pages are all the same but utilize different Adsense publisher accounts.

It’s easy to find .edu sites that have been exploited by searching for footprints of Adsense codes.

Click here to see what I’m talking about.

It’s weird that most universities aren’t “slick” enough to prevent this type of exploit. I do realize that the management of .edu site folders and subdomains are typically not centralized, but monitoring and preventing this type of malicious activity is not that difficult and should be done by someone (maybe a first year computer sciences major).

Topics: Internet Security | No Comments »

Comments are closed.

ContentRanch | Shalom Issenberg is proudly powered by WordPress
Entries (RSS) and Comments (RSS)