Jump to content


Photo

weird/fishy red thread games search result


  • Please log in to reply
31 replies to this topic

#21 sunrose

sunrose

    Rubber Ducky

  • Member
  • Pip
  • 9 posts

Posted 16 March 2015 - 14:23

Awesome find Abbe. Sure looks like it could be something like that going on. Ragnar should have a look at that site. Hopefully it will be easy to fix.

I use wordpress daily for my own websites, and one that I'm working on at the moment. I have seen there are plugins to protect your wordpress install against malicious attacks. Might be worth checking out a couple. I know I will for my own upcomming site.


Need Help With Dreamfall Chapters Puzzles? Check Out My Video Tutorials


#22 Crowboy

Crowboy

    Vestrum Herald

  • Dreamer
  • PipPipPipPipPip
  • 1194 posts

Posted 20 March 2015 - 18:00

I think someone found a vulnerability in google's url redirection. 

 

Edit: I took the liberty or reporting this to google. Hope you don't mind.


  • khh likes this

#23 Edreamer Jamil

Edreamer Jamil

    Vestrum Herald

  • Drachkin
  • PipPipPipPipPip
  • 1627 posts
  • LocationCardiff

Posted 21 March 2015 - 00:24

Powerfull, emotional, 90%!  :lol:


...Rock Paper Shotgun (wot no Cannon ?)

Clearly effects to expect from Red Thread Viagra ! Not sure if I like the sound of the Paper part ;)

#24 Roxie

Roxie

    Vestrum Crier

  • Minstrum
  • PipPipPipPip
  • 525 posts
  • LocationSeattle

Posted 21 March 2015 - 07:58

I hate to say it, but a linux 'curl -v http://redthreadgames.com/viagra-cost/' does indicate that 'viagra' related content is coming directly from the redthread site.  It appears the content may do some fancy scripted redirects to the redthread 404 page if the link is loaded directly (instead of via nav).  And it also appears that it redirects to the cialis page by default...not changing the address bar.

 

And there's funky cross-site scripting going on.

 

Time to have the webmaster clean the pipes.   So to speak.


  • spyked, Mr Moo and Crowboy like this

#25 sunrose

sunrose

    Rubber Ducky

  • Member
  • Pip
  • 9 posts

Posted 21 March 2015 - 09:13

Would be nice to hear an update from Ragnar about this, as I'm sure a lot of us are curious if the problem/cause has been found and fixed.


Need Help With Dreamfall Chapters Puzzles? Check Out My Video Tutorials


#26 Gregory of Tours

Gregory of Tours

    Rubber Ducky

  • Vestrum
  • Pip
  • 16 posts
  • LocationEuropean Union

Posted 21 March 2015 - 11:45

There are indeed hundreds of "cialis" and "viagra" related pages (redirects) indexed by Google. Most of them seem to have been picked up by Google between 30 January 2015 and 8 February 2015. Hence searching for file modifications in that specific period (especially .htaccess files) might reveal the source.

 

Edit 1 : If I may make a suggestion, disable directory indexing. The redthreadgames.com Wordpress directories are viewable, and hence leaking information.


  • spyked likes this

#27 Tomer

Tomer

    Arcadia Native

  • Vestrum
  • PipPipPip
  • 353 posts
  • LocationBerlin, Germany

Posted 21 March 2015 - 19:42

Wait, this here is not the RTG Viagra forum? 


  • Crowboy, Elpiniki Kappa and Abbe like this

#28 Roxie

Roxie

    Vestrum Crier

  • Minstrum
  • PipPipPipPip
  • 525 posts
  • LocationSeattle

Posted 21 March 2015 - 23:22

No I think that's in the backers area.
  • Elpiniki Kappa and Tomer like this

#29 Ragnar

Ragnar

    Archduke of Redthread

  • RTG Staff
  • 925 posts
  • LocationOslo, Norway

Posted 22 March 2015 - 00:16

Would be nice to hear an update from Ragnar about this, as I'm sure a lot of us are curious if the problem/cause has been found and fixed.

 

We are going to fix it — probably by wiping our entire RTG/Dreamfall site and starting fresh; most likely replacing it with a splash screen — but we had to prioritise the bug fixing and patch this week, so we didn't get around to it. We have confirmed that the code is not malicious (beyond messing with links) and the forum and user accounts are completely separate and unaffected, which is why we haven't prioritised it.

 

Unfortunately, we don't have a lot of time or resources, or competency in web design, so we will probably scale down our entire web presence to focus only on pointing people to Dreamfall storefronts (GOG, Humble, Steam)…and this forum, of course.


  • Tina, agirlnamedbob and khh like this

#30 LizzieDream9

LizzieDream9

    Arcadia Native

  • Member
  • PipPipPip
  • 123 posts
  • LocationIL, US

Posted 22 March 2015 - 03:31

I highly suggest you use Cloudflare to protect your site. I know the service came free with my hosting package but I believe they offer basic functionality to anyone for free. I had a problem with someone adding nefarious code to my site root above the public html folder which is very tricky and requires some hacking knowledge. I now run Cloudflare on all my sites and I've not had any problems since. They protect against hacking and viruses, it's automated. If your site uses WordPress, I highly suggest you install this free security plugin here. I have it installed on all my WordPress based sites and it has completely solved all the problems I was having with random spam-bots trying to bruteforce the login pages among other things. Both Cloudflare and that plugin have saved me a lot of grief so I can focus on just the.. well.. everything else involved in website creation. 


  • Mr Moo likes this

~I put my heart and soul into my art, and have lost my mind in the process.~

Dream 9 Studios | DeviantArt | Steam


#31 sunrose

sunrose

    Rubber Ducky

  • Member
  • Pip
  • 9 posts

Posted 22 March 2015 - 15:02

Glad to hear you figured the problem and that it isn't serious. :)


Need Help With Dreamfall Chapters Puzzles? Check Out My Video Tutorials


#32 maDSaint

maDSaint

    Arcadia Native

  • Vestrum
  • PipPipPip
  • 340 posts

Posted 22 March 2015 - 17:50

Well, I guess that's what you get from all that cannonstroking... You attract certain ehmmm, companies. :P


  • TalkingOak and Mr Moo like this




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users