The company's S-1 lays the groundwork for what is widely expected to be one of the largest initial public offerings of the year, second only to Uber's IPO in May. It's also...Technologyread more
Fraud investigator Harry Markopolos' accusations extended beyond GE's management to actuaries, auditors and analysts who he claims overlooked billions in liabilities.Marketsread more
Trump's tweet comes a day after Apple put out a press release describing the money it spends on U.S.-based suppliers and vendors.Technologyread more
CNBC combed through Wall Street research to see which stocks are still a buy after their earnings reports.Marketsread more
President Donald Trump held a call on Wednesday with the CEOs of three major U.S. banks, according to people with knowledge of the situation.Marketsread more
Despite aggressive strides, Waymo needs one thing before their self-driving cars become a seriously useful transportation system: people. We talked to the ones closest to it.Technologyread more
Scientists say the smoke plumes, filled with megatons of tiny, harmful particles, could travel to other areas of the world and cause serious respiratory problems for people.Weather & Natural Disastersread more
Some Weight Watchers loyalists applaud Kurbo by WW. But nutritionists worry Kurbo promotes an unhealthy relationship with food during an especially impressionable time.Health and Scienceread more
Benefits from what President Trump called "the biggest reform of all time" to the tax code have dwindled to a faint breeze just 20 months after its enactment, writes John...Politicsread more
Epstein, 66, was found in his cell in Manhattan federal lockup Saturday morning and transferred to a nearby hospital, where he was subsequently pronounced dead.Politicsread more
Air travelers faced delays at U.S. airports on Friday afternoon after a computer issue snarled processing of international arrivals.Airlinesread more
Having your business suddenly in the political spotlight can have several adverse consequences, including gaining the attention of online fraudsters.
The Red Hen Restaurant in Lexington, Virginia, which recently made news by refusing to serve White House press secretary Sarah Huckabee Sanders, is being targeted in a cyberattack, according to a researcher. The scammers have apparently taken over parts of the Red Hen's website in order to use its sudden popularity to drive traffic to their own websites, which sell things like discount Viagra.
The scammers likely weren’t trying to take a political stand, and instead hoped to capitalize on heightened internet traffic to the website because of the headlines, said Chris Boyd, lead malware intelligence analyst at security software company Malwarebytes, who wrote a blog post about what he found on the site. Even so, Boyd suggested that users might want to stay away from the site, as the compromise could mean the site is open to other kinds of attacks that could harm end users.
Malicious advertisers often take advantage of small-business websites inundated with a sudden spike in traffic, using a specific type of search engine optimization known as “spamdexing.”
“If someone was going to do this for a political reason, there would have been something more splashy, like a website defacement, and they wouldn’t have gone down this road of a more malicious, hidden SEO spam tactic,” Boyd said. This type of attack isn’t used often anymore because modern search engine security protects most websites against it, he explained.
The attack includes injecting spam into search engine results, which in the Red Hen’s case are directing readers back to online sales sites for erectile dysfunction drugs like Viagra or for Japanese sports car fans, depending on the region people are visiting from, said Boyd. He said spamdexing is an “absolutely ancient” hacking tactic, and for the restaurant’s site included several compromises, starting with “keyword stuffing,” which involves putting words related to specific content — like Viagra — into the text of articles on the website, even if they make little sense.
The attack on the website also included “scraper sites,” which made small changes to the website to get ad-based revenue driven back to a malicious site, and “hidden text,” a technique where malicious advertisers fill the background of a website with text that is the same color as the page’s background, in an effort to boost online links and ranking to their own sites.
A call to the Red Hen was not immediately returned. Boyd recommended avoiding a visit to the website until it’s fixed. “Generally speaking, any website that has been compromised runs the risk of getting turned into an infection portal,” he said.