Hoffman Amplifiers Tube Amplifier Forum

Other Stuff => Other Topics => Topic started by: pullshocks on September 19, 2015, 02:53:11 pm

Title: Amp Garage "Attack Site" warnings--WTF?
Post by: pullshocks on September 19, 2015, 02:53:11 pm

I apologize if Tube Amp Building-Tweaks-Repairs is the wrong place to post this question.

Hoffmanamps is my favorite forum, but I also have gotten a lot of good info on Amp Garage.  Some time ago, Chrome and Firefox both started giving pop=up warnings for the site, so I have stayed away.  Is this really a risk?  I have an internet security program. 

Title: Re: Amp Garage "Attack Site" warnings--WTF?
Post by: 6v6Pin1 on September 19, 2015, 03:06:52 pm

It looks like it will drop off the warning list in a few days. It's probably safe but you might want to wait and see if it gets removed from the list. And stays off the warning list.

http://www.google.com/safebrowsing/diagnostic?site=http://ampgarage.com/&hl=en (http://www.google.com/safebrowsing/diagnostic?site=http://ampgarage.com/&hl=en)

What happened when Google visited this site?
Of the 238 pages we tested on the site over the past 90 days, 214 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2015-09-01, and the last time suspicious content was found on this site was on 2015-06-23.

Title: Re: Amp Garage "Attack Site" warnings--WTF?
Post by: HotBluePlates on September 19, 2015, 04:58:38 pm

It looks like Google is proactively looking at pages and identifying some which may have been compromised to host malware.

In general, this is called a "watering-hole attack" or "drive-by malware." Let's say hackers want to steal your username & password for your bank's site. They need to implant malware on your computer to assist with stealing passwords. But doing that one victim at a time is too little return for time invested. They identify a page which receives a lot of traffic, hack into that site and upload malware onto the server. Now when you visit the legitimate page, malware will be served to your computer when it loads some component on the page. So now many people get infected in an automated manner.

Google must be detecting it (or simply major vulnerabilities in the site), and waiting for the site owner to correct the issue. Hopefully, they notice and choose to do that.

Title: Re: Amp Garage "Attack Site" warnings--WTF?
Post by: EL34 on September 20, 2015, 05:05:38 am

That has been going on for a couple months


They blame it on Google
They say that google will not give them a clean bill of heath and get rid of the message


The attack was quite a while ago