Skip to main content

Don't Accept Advice Or Code From Hackers

We're lately seeing a few problem reports, in Blogger Help Forum: Get Help with an Issue, from owners of blogs now locked as malware / spam hosts.
My blog was deleted because it is marked as spam. I never spammed so why my blog has been confirmed as a Spam Host?
This blog owner appears to have simply accepted advice from the wrong person.

Using The Internet Archive (aka "Wayback Machine") we can sometimes find cached copies of blogs, even after deleted as suspected malware / spam hosts. In one case, though, viewing the blog was not possible - even having found a copy of the blog, in cache.

In some cases, simply finding a cached copy of a deleted blog may not guarantee its review - let alone its being restored.

In one case, the blog was visible, when the cache link was clicked - for 2 seconds. Then, the display went white. No blog content was visible.

Viewing the blog, in code ("text") mode, showed a fully published blog page. Scrolling through the code, the problem was discovered. Large blocks of custom JavaScript code, bearing shiny labels like "FlexSlider", "hoverIntent", and "Superfish", were found.

Chances are. the blog owner installed the code simply hoping to make the blog more attractive / interesting, to the reader population. Unfortunately, the shiny code had a different effect.

The blog is now broken, and can't be viewed. In order to be reviewed, and returned to the owner so the unnecessary code can be fixed or removed, the blog has to be examined, by security experts. But, it can't be viewed, because it's broken. Lather, rinse, repeat.

The owner accepted advice and code from a hacker - and has broken the blog. This is yet one more case of unwise installation of unsafe code. It's probably not intentionally malicious - but the Blogger malware / spam classification process can't determine intent - just result. So, the blog was righteously deleted.

As a blog owner, you must be selective of what advice - and accessories - you accept, when maintaining your blog. The blog you save may be your own.

Comments

Popular posts from this blog

Stats Components Are Significant, In Their Own Context

One popular Stats related accessory, which displays pageview information to the public, is the "Popular Posts" gadget.

Popular Posts identifies from 1 to 10 of the most popular posts in the blog, by comparing Stats pageview counts. Optional parts of the display of each post are a snippet of text, and an ever popular thumbnail photo.

Like many Stats features, blog owners have found imaginative uses for "Popular Posts" - and overlook the limitations of the gadget. Both the dynamic nature of Stats, and the timing of the various pageview count recalculations, create confusion, when Popular Posts is examined.

Free Domain Registration By "UNONIC" Is Fraudulent

Blogger blog owners, like everybody else, like to save money.

Some blog owners prefer to save money when registering a custom domain, for their blogs. We've seen several free domain registration services, providing what is claimed to be a two level Top Level Domain "co.xx" (where "xx" == various country codes).

The latest in this ongoing story appears to be "net.tf" - and 13 other "top level domains".There is also an additional free service offering third-level .tf domains, under the name United Names Organisation. They occupy 14 second-level domains, including .eu.tf, .us.tf, .net.tf, and .edu.tf. They are run by the same company as smartdots.com, and are given away as URL redirections.