Anyone know why my browsers now report coastalwatch.com.au as an attack site? I've noticed it is now dropping off the .au when i try to access the site.

wow, looks like it has been hacked.

I'd probably recommend not to go there if you use internet explorer or don't have antivirus installed.

I found the report is via google? (and only affects firefox?)

Seabreeze.com.au had this with Symantec - their auto software wasn't so flash & classed one of our pages as a virus (which was bogus). Fortunately they fixed the bodgy report with 48 hours.

Seems a bit harsh to close down such a popular site on "suspicious activity 1 time(s) over the past 90 days." .. maybe they got hacked?

---

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=broke://coastalwatch.com/

Advisory provided by Google

Safe Browsing
Diagnostic page for coastalwatch.com

What is the current listing status for coastalwatch.com?

Site is listed as suspicious - visiting this web site may harm your computer.

Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 34 pages we tested on the site over the past 90 days, 7 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2009-02-28, and the last time suspicious content was found on this site was on 2009-02-28.

Malicious software is hosted on 1 domain(s), including jpsb.meibu.com/.

This site was hosted on 2 network(s) including AS38829 (CW), AS9942 (COMINDICO).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, coastalwatch.com did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

---

aus301 said...

Hmmm..no problems here, but then I am using a superior Mac.

[}:)] Deploy flame suit now [}:)]

no flame suit needed there, its proven fact...

Dylan72 said...

laurie said...
(and only affects firefox?)
...

---

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?client=Firefox&hl=en-US&site=broke://coastalwatch.com/

I think you're misreading the URL there. The "client=Firefox" bit refers to the fact that YOU visited safebrowsing using Firefox, not that the "vulnerability" affects Firefox.

This could descend into a Firefox-vs-IE debate.

Changed it to safebrowsing.clients.google.com/safebrowsing/diagnostic?site=http://coastalwatch.com/ .. and still the same report

I checked the report on the "Malicious software is hosted on 1 domain(s), including jpsb.meibu.com/", and it says this domain hosts ~ 245 malicious scripts.

I'd guess that a hacker has managed to insert a link to their meibu site, which then chooses the appropriate script to hack whatever browser is present at the time.

Firefox presents the blocking screen because they have a partnership with Google, whereas Microsoft & Apple aren't really mates with Google so don't use the google service.

Again .. only speculating.... all will be revealed in time...

heh... for some reason Silverlight is the only stream off CW that works on my macbook ..

i hope it ain't Silverlight!

ya know what, i reckon its gotta be some surfer who's lost his fave surfbreak to a bunch of touro's.

having learned how to surf at the Pass, the feeling of perfection lost is kinda familiar ... although really there's lots of secret spots around here that not many ppl know about.