Daggerfall unity website
-
- Posts: 1
- Joined: Thu Dec 09, 2021 6:02 pm
Daggerfall unity website
When trying to go to the daggerfall unity's website a malaware popup appears. Press allow to confirm you are human.
- Attachments
-
- malaware.PNG (11.96 KiB) Viewed 640 times
- Shapur
- Posts: 154
- Joined: Wed Apr 21, 2021 5:11 pm
- Location: Czech Republic
- Contact:
Re: Daggerfall unity website
- Shapur
- Posts: 154
- Joined: Wed Apr 21, 2021 5:11 pm
- Location: Czech Republic
- Contact:
Re: Daggerfall unity website
Nevermind, that is the real one.
Did the website get hit by some malware?
It's not how it's supposed to be.
Did the website get hit by some malware?
It's not how it's supposed to be.
- Shapur
- Posts: 154
- Joined: Wed Apr 21, 2021 5:11 pm
- Location: Czech Republic
- Contact:
Re: Daggerfall unity website
Do not click on any of those weird popups.
- BadLuckBurt
- Posts: 948
- Joined: Sun Nov 05, 2017 8:30 pm
Re: Daggerfall unity website
He's talking about dfworkshop.net, the main site. I just tried and got redirected as well.
@Admins / moderators, I think there has been some malicious content injected to the Wordpress (I think it uses Wordpress?) database. It's usually Javascript <script> tags being added to the page content.
DFU on UESP: https://en.uesp.net/w/index.php?title=T ... fall_Unity
DFU Nexus Mods: https://www.nexusmods.com/daggerfallunity
My github repositories with mostly DFU related stuff: https://github.com/BadLuckBurt
.
DFU Nexus Mods: https://www.nexusmods.com/daggerfallunity
My github repositories with mostly DFU related stuff: https://github.com/BadLuckBurt
.
- Shapur
- Posts: 154
- Joined: Wed Apr 21, 2021 5:11 pm
- Location: Czech Republic
- Contact:
Re: Daggerfall unity website
Yep, seems like the website got attacked.BadLuckBurt wrote: ↑Thu Dec 09, 2021 6:52 pmHe's talking about dfworkshop.net, the main site. I just tried and got redirected as well.
@Admins / moderators, I think there has been some malicious content injected to the Wordpress (I think it uses Wordpress?) database. It's usually Javascript <script> tags being added to the page content.
- Magicono43
- Posts: 1141
- Joined: Tue Nov 06, 2018 7:06 am
Re: Daggerfall unity website
Yeah, can confirm here as well that it instantly gets redirected to spam/malware type stuff.
- XJDHDR
- Posts: 258
- Joined: Thu Jan 10, 2019 5:15 pm
- Location: New Zealand
- Contact:
Re: Daggerfall unity website
I've found that a malicious script seems to have become attached to the website, which is causing these redirects.
If you have Adblock Plus, uBlock Origin or some other similar blocking addon, you can add this rule to stop these redirects in the meantime:
If you have Adblock Plus, uBlock Origin or some other similar blocking addon, you can add this rule to stop these redirects in the meantime:
Code: Select all
||stat.belonnanotservice.ga^
My DF Unity mods:
Unofficial Block, Location and Model Fixes
Skip Intro Video
My other creations and essays:
https://xjdhdr.gitlab.io/
Unofficial Block, Location and Model Fixes
Skip Intro Video
My other creations and essays:
https://xjdhdr.gitlab.io/
- Interkarma
- Posts: 7247
- Joined: Sun Mar 22, 2015 1:51 am
Re: Daggerfall unity website
Thanks for the alert. I've taken website down while I investigate.
- Interkarma
- Posts: 7247
- Joined: Sun Mar 22, 2015 1:51 am
Re: Daggerfall unity website
I've restored whole site and database from recent backup prior to redirect hack. Restored site scans clean and currently has additional paid protection in place for some peace of mind.
As a precaution, I've reset all passwords for the few users who have access to blog (only myself and a couple of other members here) and purged all non-essential plugins. This might break some older posts that embed rich content such as gfycat animations or code formatting. I'd rather keep plugins to a bare minimum for now until I can complete review.
The site and all plugins are always kept up to date, so not certain how hack was initially executed. I'll keep monitoring site proactively and dig through logs to discover more.
As a precaution, I've reset all passwords for the few users who have access to blog (only myself and a couple of other members here) and purged all non-essential plugins. This might break some older posts that embed rich content such as gfycat animations or code formatting. I'd rather keep plugins to a bare minimum for now until I can complete review.
The site and all plugins are always kept up to date, so not certain how hack was initially executed. I'll keep monitoring site proactively and dig through logs to discover more.