Custom Search
More than 12,000 searchable pages indexed.

Your RF Cafe
Progenitor & Webmaster

Click here to read about RF CafeView the YouTube RF Cafe Intro VideoKirt Blattenberger ... single-handedly redefining what an engineering website should be.

Carpe Diem!
(Seize the Day!)

5th MOB:
My USAF radar shop

Airplanes and Rockets:
My personal hobby website

Equine Kingdom:
My daughter Sally's horse riding website

•−•  ••−•    −•−•  •−  ••−•  •
RF Cafe Morse Code >Hear It<

Job Board

About RF Cafe™


Check Your Webpage for Hidden Code - RF Cafe Forums

The original RF Cafe Forums were shut down in late 2012 due to maintenance issues. Please visit the new and improved RF Cafe Forums that were created in September of 2015. Unlike with the old forums where users registered individually, the new forums use a common User Name and Password so anyone can post without needing to create an account. Please find the current User Name and Password on the RF Cafe homepage. Thanks for your participation.

Below are all of the old forum threads, including all the responses to the original posts.

-- Amateur Radio
-- Anecdotes, Gripes & Humor
-- Antennas
-- CAE, CAD, & Software
-- Circuits & Components
-- Employment & Interviews
-- Miscellany
-- Swap Shop
-- Systems
-- Test & Measurement
-- Webmaster

 Post subject: Check Your Webpage for Hidden Code
Posted: Wed Jan 07, 2009 1:31 pm 
Site Admin
User avatar

Joined: Sun Aug 03, 2003 2:02 pm
Posts: 878
Location: Erie, PA

I've got an interesting story for you that is both surprising and at the same time not surprising. A couple weeks ago, I received an e-mail from someone in Sweden informing me that the website of a company I link to on RF Cafe was triggering his firewall software. He said that although the website appeared legitimate, there was something about it that must not be right.
Knowing for a fact that the company was absolutely reputable, I immediately began an investigation. When I went to the company's website, the only thing that seemed strange was that its relatively plain homepage took longer to load than what I expected. My firewall software was not overly concerned about it. So, I took a look at the HTML code. What I found was shocking.
At the bottom of the code, just prior to the closing </html> tag, was about 1,000 lines of code that contained hyperlinks to hundreds of po rn and pharmaceutical websites! I called the company and spoke to the CEO. Understandably, he suspected that I was a loon, but I managed to convince him to look at the HTML code. I could hear his jaw hit the desk once he saw what I was seeing.
It turns out that the ISP hosting the company website has been infiltrated with rogue code that was automatically appending that crap to web pages all over the server. I have not heard back from the company since then, but I would not be surprised if some sort of lawsuit is being pursued. Who knows how much business was lost, and possibly company credibility has been damaged, by the situation.
This is not my first experience with such an occurrence. A similar situation occurred a few years ago with another ISP. If you operate a website of any sort, you would be well advised to use the View Source Code option on your browser to verify that your page code has not been hijacked.
Whenever I report on something like this, I always think back on the headline that I posted a couple years ago where a high profile hacker/spammer in Russia was discovered in his apartment with a hammer in his head. Something about that scenario has a macabre appeal to it.

- Kirt Blattenberger :smt024
RF Cafe Progenitor & Webmaster

Posted  11/12/2012