Link redirection - malicious website

[nofear88]

I was redirected to this when trying to get to Skyrim Nexus from the forums:

 

http://static.skyrim.nexusmods.com/mods/images/22198-1-1352424505.jpg

 

Looks like the Nexus's web codes or what you call them is infected by evil doers again.

[micalov]

Stuff like that is also usually a local infection, would run virus and malware scanners tbh.

[nofear88]

I did not know that, running malware + anti-virus now.

[Eckss]

In this case, it’s not a local infection (unless you consider the UK to be ‘local’).

 

It’s a thread link hijacker and it’s affecting multiple UK websites who get their adverts provided by Google.

 

In case it’s not clear, the website IS a MALWARE PLATFORM.

 

The web address has changed once already, from testables.net/d/juicyru.com to surveyoyster.net/d/juicyru.com.

 

I don’t know how to post this as a notification/warning across all the Nexus, otherwise I would; I found this thread while looking for a way to notify someone.

 

I guess I’ll have to PM someone.

 

Take care,

Eck. :thumbsup:

[mechatech]

If you want to avoid the plague of scumware polluted ads I strongly recommend AdBlock Plus and NoScript. That and a good anti virus will block just about everything. After a nasty rootkit last year I swore never to use my browser without them.

[bben46]

If this were a Nexus problem we would be seeing many reports - as so far in the last 3 days we have seen 2 people report malware out of the several thousand who have posted and the thousands more who have downloaded here during that time. That indicates that it is not likely a Nexus problem.

 

We do welcome reports of malware in uploaded files and do scan them when we get reports. I use Virus Total. Available FREE on line here. https://www.virustotal.com/

 

As for the ads, we have no way to pre check them as they are constantly changed by the ad service. :rolleyes:

[Eckss]

Having great Anti-Virus software and Ad-blockers is fine for those of us with the maturity to use them, but kids use Nexus and the offer of a free i-Phone or whatever is all too tempting to them. Also, the fact that they probably trust Nexus means that they're more likely to believe it.

 

bben is correct, this isn’t a Nexus problem; the attack is coming through the Ads and Google have been informed. This attack is also localised in the UK (at least so far) and, Premium members don’t see Ads anyway; I think that’s why there haven’t been many reports of this yet.

 

This problem isn’t only affecting Nexus, lots of UK sites that use Ads provided by Google are being affected.

 

I know Nexus can’t check the Ads, but couldn't a Warning be posted prominently somewhere on the site? Or perhaps some kind of mass PM to all UK members (kind of like an office memo) could be sent.

 

I love Nexus and I find it very offensive that some scambug is targeting our more vulnerable members through the very Ads that help pay for the site. :verymad:

 

Eck.

[bben46]

I have my own special opinion of what should be done to the people who write and distribute malware, unfortunately, What I would like to see done to them is no longer acceptable in the civilized world. :confused:

[Deleted3507349User]

On the upside, bben, the world is getting less civilized by the day....don't give up hope!