C4C appears to have been pwned

[Graeme Cole]

Occasionally, when you request a page on the C4Countdown forum, it will 302-redirect to a website called "bongacams". After a brief inspection of this dubious online resource, I was disappointed to find that the quality of Countdown discussion there is far below what I expect from C4C. Their letters selections use far too many Xs, and the numbers target is always the same and only two digits.

I've seen this happen in both Chrome and Firefox. At least one other person has reported the problem as well. I'm guessing C4Countdown's web server has been compromised in some way.

[Johnny Canuck]

Have also had security-related popups saying “Your computer has been locked down”. Props for referencing an Apterous variant, but still annoying.

[Sam Cappleman-Lynes]

Occasionally, when you request a page on the C4Countdown forum...

This hasn't happened to me yet on C4C, but it did happen to me on wiki.apterous.org yesterday.

[Graeme Cole]

Occasionally, when you request a page on the C4Countdown forum...

This hasn't happened to me yet on C4C, but it did happen to me on wiki.apterous.org yesterday.

wiki.apterous.org resolves to the same IP as c4countdown.co.uk, so I guess they share the same web server. apterous.org itself is a different server.

[Andres Sanchez]

Did not expect a thread to be made as quick as it did. Got this redirect and it was real weird for me. Hope that the issue can be fixed

[Gavin Chipper]

How do we know that it was the real Graeme that started this thread? We have to be very careful about considering the motivations behind it. One false move and we could all be paperclips.

[Marc Meakin]

How do we know that it was the real Graeme that started this thread? We have to be very careful about considering the motivations behind it. One false move and we could all be paperclips.

Nothing wrong with paper clips, I've needed one on here for years (was scouring my posts here to find the one from our absent friend Phi Reynolds)

[Callum Todd]

One false move and we could all be paperclips.

'I can see you're trying to maximise paperclips. Would you like some help with that?'

[Charlie Reams]

It seems our web hosting company itself has been compromised, judging by this message I received from them:

Security Notification
Due to a security vulnerability we have temporarily disabled the cPanel mail Horde webmail client until a fix is in place.

It's quite annoying that they weren't proactive about this, but let's see if that fixes the issue. Please let me know if you continue to see this happening as of now.

FWIW, www.apterous.org is extensively isolated from wiki.apterous.org and from c4c, so there's no risk to anyone's apterous account. But the wiki and c4c are hosted on the same place, which is consistent with the idea that it's the host itself that has a problem.

[Graeme Cole]

It's quite annoying that they weren't proactive about this, but let's see if that fixes the issue. Please let me know if you continue to see this happening as of now.

Just happened again for me when reloading the C4C main page.

[Andres Sanchez]

Same here.

[Andres Sanchez]

Now I just got one from a site called Fuckbook. God the internet's really full of porn.

[Marc Meakin]

Fwiw I go here on my phone and so far none of this Mullarkey

[Charlie Reams]

Thanks, I'll keep looking into this. I've enabled DNS protection in case this is some kind of DNS poisoning issue, although that seems unlikely.

[JackHurst]

Appears to happen to me roughly 1/10 times a log in. Thought I was going mad the first couple of times it happened.

Surely this is a fuck up so bad by the hosting provider we can get a free year from them or something...

[Paul Anderson]

Nada on Safari, the superior browser

[Marc Meakin]

Nada on Safari, the superior browser

Safari so goodi

[Charlie Reams]

Really sorry about this. The provider claims that everything is resolved from this morning, so please let me know if you continue to see this as of now. If push comes to shove we can move hosts but that is likely to be disruptive (and expensive).

[Gavin Chipper]

No problem. Not your fault anyway.