Posted on 02/02/2007 1:46:47 PM PST by snarkpup
Websense® Security Labs™ has discovered that the official website of Dolphin Stadium has been compromised with malicious code. The Dolphin Stadium is currently experiencing a large number of visitors, as it is the home of Sunday's Super Bowl XLI. The site is linked from numerous official Super Bowl websites and various Super Bowl-related search terms return links to the site.
(Excerpt) Read more at websense.com ...
The article itself says this is another example of hostile scripting. This is somewhat ironic since their web site is full of it. However, the article reads fine with scripting disabled.
I don't know if Websense's scripting is hostile, just that it's there and seems to be unnecessary.
Live and die by the patch.
http://blogs.chron.com/techblog/archives/2007/02/offensive_hacking_at_the_super_bowl_1.html
"The site has since been cleaned up, but ZDNet blogger Ryan Naraine says another version of the Web address which is supposed to direct to the main site has now been compromised, and it's sending users to a page with malicious code."
Updated #2: February 2, 2007 @ 5:13 pm] All the affected Miami Dolphins sites (see Alexa traffic data) have now been disinfected but there is evidence that hundreds of other sites have been hijacked and rigged with the malicious JavaScript code. I've confirmed that the one-line code has been planted on an internal page of the U.S. government's Centers for Disease Control and Prevention Health Marketing site.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.