Popular adult site beeg[dot]com pushes malware
March 20, 2014 | By Jérôme Segura | | Share
Subject: We need you urgent attention. Your last blog post
we are the owners of the site. it’s hacked. we believe our servers are clean now. please add our comment to the post.
Beeg does not give out any details about the ‘hack’ which leaves the door open for some speculation. A big (no pun intended) question remains: how did a core ? We’re not talking about some third-party ad on their site and some bad luck with malvertising, but really about a redirection that took place on the server itself.
Short of seeing server logs showing the hack, making a definite statement on what exactly happened is simply speculation. Google’s Safe Browsing shows that “Part of this site was listed for suspicious activity 962 time(s) over the past 90 days.” which is still a little concerning.
Update (2): beeg[dot]com now displays a disclaimer/acknowledgment:
Most people would agree that browsing pornographic sites is a dangerous thing to do and often leads to all sorts of malware infections.
There are a number of reasons why any website can get hacked ranging from poor password hygiene to how valuable of a target it is, the latter often determined by how much traffic it is getting.
And this is precisely why this post is relevant. The site in question beeg[dot]com, is one of the top adult domains with an of 332:
According to its owners, it also drives 5.6 million unique visits per day:
Our honeypots caught (the first instance being recorded on March 18 at 22:40) the site serving a drive-by download that originated directly from iframe injections including one on beeg[dot]com itself:
The domain within the malicious iframe does a typical 302 redirect
to an exploit kit (Sweet Orange) landing page, shown below using some obfuscation, which prepares the exploits to be launched on the victim:
In this case we were served two exploits:
You might also like
A cowboy among hippies — Moose Lake Star-Gazette
I easily won the cowboy over, especially when I pointed out my Texas friend, Beegs. The cowboy volunteered that he was a huge Willie Nelson fan.
Motherless Daughters: The Legacy of Loss, Second Edition
Book (Da Capo Press)
tragus earrings hoop septum ring horseshoe 16g 1/4 2pcs - choose your color - glitter hand-painted balls ear gauges piercing body jewelry circular barbell BEEG (Set S-13-Red+Pink)
What does BEEGS stand for?
Baltic and East European Graduate School