Was Drupal.org hacked a few hours ago? Without warning, as I was navigating around Drupal.org, I was redirected to a proxy page at http ://w ww.netshaq.com/cgiproxy/nph-proxy.cgi/011100A/http/drupal.org/node/48737, which showed the Drupal.org content with a banner ad across the top.

Shortly after, the Drupal.org domain was being redirected to a subdomain of OSL, presumably in response to the hack. As of now, it is back to normal.

Would appreciate feedback from the Drupal core developers about how we can patch our own installations, if necessary.

Thanks,
ba

[Edit: sepeck: broke link to stop redirect and search engines]

Comments

dries’s picture

Not sure what caused that. I haven't received an e-mail from OSL or anything. If you have more information, please drop me an e-mail.

harald.walker’s picture

Did you check your computer for spyware?

adam.skinner’s picture

That's a common CGI proxy script. People (*cough*) use them at work to bypass their firewalls. I don't know why you'd be directed through one, but it's not a "hack" by any means; the banner across the top is part of the perl script.

sepeck’s picture

Please see this thread http://drupal.org/node/52943 about this as well. My guess is that you should check your system for spyware/adware/malware.

I broke the link to prevent google indexing.

-Steven Peck
---------
Test site, always start with a test site.
Drupal Best Practices Guide -|- Black Mountain

-Steven Peck
---------
Test site, always start with a test site.
Drupal Best Practices Guide