Liezl Estipona
Comedy, Photography, and a 3rd generic interest

Blog

   Liezl at Work.  Looks like a client’s server was hit with a worm, transferring data to some russian site by injecting some javascript was cleverly obfuscated with legitimate sites like livinggreen.net and ufo1.com. This just means that any malicious script is hidden, making it not set off any “this site may harm your computer” red flags on google. 
 However the bigger question which I’ve been researching all day is what does the javascript do when you visit the page… it may just hijack your website hits, download malware on your computer, or harvest data on the users end. 
 Learning all this is interesting, especially knowing how prevalent this website inoculation is… I’ve taken to downloading a firefox add on called  No Script  which lets you control what gets loaded. It can be annoying, but it works.

Liezl at Work. Looks like a client’s server was hit with a worm, transferring data to some russian site by injecting some javascript was cleverly obfuscated with legitimate sites like livinggreen.net and ufo1.com. This just means that any malicious script is hidden, making it not set off any “this site may harm your computer” red flags on google.

However the bigger question which I’ve been researching all day is what does the javascript do when you visit the page… it may just hijack your website hits, download malware on your computer, or harvest data on the users end.

Learning all this is interesting, especially knowing how prevalent this website inoculation is… I’ve taken to downloading a firefox add on called No Script which lets you control what gets loaded. It can be annoying, but it works.