rend25
06-17-2019, 06:50 PM
I get this alert from MalwareBytes on every page of this site and it's pretty annoying.:mad:


Dracula
06-17-2019, 07:30 PM
Has anyone confirmed the problem has been cleaned up? I thought FFshrine had been hacked.

GlennJ
06-17-2019, 10:19 PM
I'm getting the same issue. The site goes funky and shows a chrome update browser malware message.
I got infected with GlobeImposter 2.0 which is a dangerous ransomware like WannaCry.



Fake jQuery injections have been popular among hackers since jQuery itself went mainstream and became one of the most widely adopted JavaScript libraries. If you are suffering from similar symptoms to this post, your site will require professional website malware removal.

Every now and then we write about such attacks. Almost every week we see new fake jQuery domains and scripts that mimic jQuery. For example, one of the most prevalent malware infections of the last couple of weeks is the attack that injects fake jQuery script into the head section of WordPress and Joomla! sites.

PeterJJ
06-17-2019, 11:35 PM
every day the same posts over and over again....use NoScript and be done with it...

rend25
06-18-2019, 07:32 PM
every day the same posts over and over again....use NoScript and be done with it...

This still should not be happening on a forum of this size. It's like the admins here don't care about the safety of thousands of their daily users.
I guess security isn't much of a priority here since the site isn't even HTTPS.:notgood:

PeterJJ
06-18-2019, 11:31 PM
This still should not be happening on a forum of this size. It's like the admins here don't care about the safety of thousands of their daily users.
I guess security isn't much of a priority here since the site isn't even HTTPS.:notgood:

are you really so naive to surf the net without adblock and/or noscript?
you'd be surprised what is running in the background of other pages...even if you think it's a trustworthy site and/or you have never experienced any problems...
it is not the task of any adminitrator to care for your safety while surfing...that's your problem

if you want safety stay out of the internet....

DavidRaphael
06-19-2019, 05:11 AM
It appears it might be KPOT Stealer malware, which is pretty nasty if not removed from your computer and can lead to personal data being stolen and even ID fraud.

I saw the pop-up with the fake Chrome updater a few times so have kept away from the site for a few days.

I just tried the site now for the first time and didn't see it this time. That said, I do have malwarebytes, cybersec, adblock and a host of other plugins (which, it must be said, didn't block the fake chrome update browser a few days ago)

I would think the site needs a serious security update, especially because it's not yet HTTPS.

dR

somebread
06-21-2019, 12:57 PM
are you really so naive to surf the net without adblock and/or noscript?
you'd be surprised what is running in the background of other pages...even if you think it's a trustworthy site and/or you have never experienced any problems...
it is not the task of any adminitrator to care for your safety while surfing...that's your problem

if you want safety stay out of the internet....

I'm pretty sure it's exactly the duty of a site's admin to keep their sites healthy and/or safe. Considering I have both UBlock and NoScript and had it pop up on me, yeah, something longterm probably needs to be done (and according to another thread, it's being looked into.)
That said, Leon Scott Kennedy offered a temporary fix, see this thread (Thread 233780).