Security guys baffled
I read this bit, this, and this on some serious spyware activity.
Their question was why a domain that had no visible means of traffic building could have big alexa traffic spikes.
After seeing what a 302 can do to traffic, I’ve got a little theory here…
What if that URL is being spamvertized via throwaway sites. Heck, even an iframe on some other site might account for what we’re seeing? I guess that could be tested? Would javascript on a seemingly empty page be executed if it was inserted as an invisible iframe on another page/domain?
Ever think of that, security guys?
Let’s see, if I insert an iframe here, with a javascript that throws up a very simple alert. Would it work?
It did, but after the first day or so, it got really irritating. However, it appears an iframe is the only way I can get a javascript popup to work in WP. Just an FYI.
April 13th, 2005 at 12:47 pm
Good theory, but the answer is somewhat more widespread in terms of ambition and sheer craziness. Expect a “reveal all” soon…
April 13th, 2005 at 1:14 pm
Sounds interesting! Can’t wait to hear what you guys figure out!
April 13th, 2005 at 5:46 pm
Spazbox.net traffic source revealed?
Well, after every theory under the sun was explored for the large number of visitors to Spazbox.net, it seems the most obvious one was the one we didn’t actually think of - or at least, we did, but then tried all the fancier ideas instead. Well I did…
April 13th, 2005 at 5:46 pm
Well, the findings are now available! Though there are yet more questions to be answered…!