The biggest U.S. gasoline price surge in years is running out of steam just in time for the start of the summer driving season.Energyread more
Stocks rose on Friday, but notched weekly losses as investors worried the U.S.-China trade war is hurting economic growth.US Marketsread more
The combination of mounting recession fears, bets on a more cautious Fed and a regular uptick in market volatility could spell more losses.Marketsread more
The therapy, Zolgensma, is a one-time treatment for spinal muscular atrophy — a muscle-wasting disease and leading genetic cause of infant mortality, affecting 1 in every...Biotech and Pharmaceuticalsread more
SpaceX has raised just over $1 billion in financing since the beginning of the year.Investing in Spaceread more
An analyst for Ark Invest, which has a major investment in Tesla, says recent drastic price-target cuts by others on Wall Street are missing the big picture.Investingread more
A federal judge in California has blocked President Donald Trump from building sections of his long-sought border wall with money secured under his declaration of a national...Politicsread more
Former Foreign Minister Boris Johnson is seen as the bookmaker's favorite to succeed outgoing Prime Minister Theresa May.Europe Politicsread more
The race is underway to find a vaccine that can control African swine fever, a highly contagious and deadly viral infection ravaging China's hog population. There is currently...Agricultureread more
Apple bought Tueo Health, which was developing tech to help parents monitor asthma symptoms in children, using a mobile app and commercial breathing sensors.Technologyread more
Having your business suddenly in the political spotlight can have several adverse consequences, including gaining the attention of online fraudsters.
The Red Hen Restaurant in Lexington, Virginia, which recently made news by refusing to serve White House press secretary Sarah Huckabee Sanders, is being targeted in a cyberattack, according to a researcher. The scammers have apparently taken over parts of the Red Hen's website in order to use its sudden popularity to drive traffic to their own websites, which sell things like discount Viagra.
The scammers likely weren’t trying to take a political stand, and instead hoped to capitalize on heightened internet traffic to the website because of the headlines, said Chris Boyd, lead malware intelligence analyst at security software company Malwarebytes, who wrote a blog post about what he found on the site. Even so, Boyd suggested that users might want to stay away from the site, as the compromise could mean the site is open to other kinds of attacks that could harm end users.
Malicious advertisers often take advantage of small-business websites inundated with a sudden spike in traffic, using a specific type of search engine optimization known as “spamdexing.”
“If someone was going to do this for a political reason, there would have been something more splashy, like a website defacement, and they wouldn’t have gone down this road of a more malicious, hidden SEO spam tactic,” Boyd said. This type of attack isn’t used often anymore because modern search engine security protects most websites against it, he explained.
The attack includes injecting spam into search engine results, which in the Red Hen’s case are directing readers back to online sales sites for erectile dysfunction drugs like Viagra or for Japanese sports car fans, depending on the region people are visiting from, said Boyd. He said spamdexing is an “absolutely ancient” hacking tactic, and for the restaurant’s site included several compromises, starting with “keyword stuffing,” which involves putting words related to specific content — like Viagra — into the text of articles on the website, even if they make little sense.
The attack on the website also included “scraper sites,” which made small changes to the website to get ad-based revenue driven back to a malicious site, and “hidden text,” a technique where malicious advertisers fill the background of a website with text that is the same color as the page’s background, in an effort to boost online links and ranking to their own sites.
A call to the Red Hen was not immediately returned. Boyd recommended avoiding a visit to the website until it’s fixed. “Generally speaking, any website that has been compromised runs the risk of getting turned into an infection portal,” he said.