jsrailton,
@jsrailton@mastodon.social avatar

NEW: I found 1000s of shady PDFs hosted on .gov websites of states, universities, defense contractors, etc.

It was a clever SEO spam operation, but the access could have been exploited for more nefarious things. 1/

@lorenzofb has the writeup

https://techcrunch.com/2023/06/02/scammers-publish-ads-for-hacking-services-on-government-websites/

image/png
image/png
image/png

jsrailton,
@jsrailton@mastodon.social avatar

2/ SEO operations like this are a bit like opportunistic infections for Content Management Systems.

They show up when there are bugs, misconfigurations & permissions issues.

rapidly pushed out notifications to affected orgs & the content is coming down all over.

jsrailton,
@jsrailton@mastodon.social avatar

3/ The PDF spam is still all over. Including many gov sites.

Want to help?

1️⃣ Google search:

"site:[pick a top-level domain e.g. .gov.au .gov.uk etc.] instagram hack followers filetype:pdf"

2️⃣mix in terms e.g. "Tiktok" & "fans."

3️⃣ Cry

4️⃣Gently notify administrators

jfmezei,

@jsrailton What do the PDFs actually contain? Any information of value towards hacking accounts, or just junk promises etc ? do the pdfs contain malicious code that runs on Windows?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • DreamBathrooms
  • InstantRegret
  • ethstaker
  • magazineikmin
  • GTA5RPClips
  • rosin
  • modclub
  • Youngstown
  • ngwrru68w68
  • slotface
  • osvaldo12
  • kavyap
  • mdbf
  • thenastyranch
  • JUstTest
  • everett
  • cubers
  • cisconetworking
  • normalnudes
  • Durango
  • anitta
  • khanakhh
  • tacticalgear
  • tester
  • provamag3
  • megavids
  • Leos
  • lostlight
  • All magazines