AntiVirus, Compromise Reports, Malware, Programming, Security

Warning: Diigo has been Domain Hijacked – Oct 25 2012

Justin Cooney

November 6 2012: After the crisis with their domain hijacking, there are some amazing accounts coming out about what happened. This article on TechCrunch tells quite an incredible story.

October 26 2012: @Diigo on Twitter has announced that they are back in control of the Diigo.com domain as of about 5:00ET.

The domain update should have propagated through the Internet by now so Diigo.com is safe to access now. Diigo states that the total outage time was 48 hours.

It remains to be seen if people’s PCs have been infected by possible malware hosted on the hijacked sites. I certainly hope this is not the case.

October 25 2012 – Warning: do not browse to Diigo.com. The site has been domain hijacked.

The Web is going crazy with viruses and hack attacks these days. It seems like every day there is news of a new compromise.

Today I was surprised when I tried browsing to Diigo.com (a great social bookmarking site that I like to use) only to find myself redirected to site I do not recognize that has bizarre popups. It looks like the site has been compromised.

Happily Diigo has been keeping its user base updated on Twitter via @diigo .

It seems user data has not been lost and all of one’s social bookmarks are still in place. Diigo is working with its domain registrar Yahoo hosting to correct the hijacking, but progress is slow. Based on people’s reports on Twitter it seems the hijack happened sometime yesterday (22 hours ago as of 3:00 ET Sept 25 2012) and Yahoo hosting has still not corrected things. In the meantime @Diigo on Twitter is advising users to point their browsers to Diigo.net which is still operational.

Wikipedia has a short entry explaining the Diigo domain problem that is worth checking out.

When I checked the URL for the hijacker’s site, it comes up with a 0 trust rating, which is definitely not good. I wonder if there is a chance of malware or a virus attack coming from the site. Some people on Twitter are reporting that their Antivirus software is showing warnings of Trojans.

My Antivirus software did not report a problem, but I will need to run diagnostics on my machine to try to clear up any garbage that might have found its way on, and I also plan to change all of my passwords just to be safe.

This sort of thing is always annoying when it happens, but it is definitely a wake up call to anyone developing sites for the Web. It’s a bit like the wild-west out there and there is danger lurking around every corner if you are not careful.

Links

Advertisement

Published by Justin Cooney

I am a Senior Applications Programmer / Analyst with years of experience developing enterprise solutions using the Microsoft technology stack including C#, VB.NET, ASP.NET, AJAX, IIS and SQL Server. I specialize in Web application development with a focus on building secure systems, integrating applications, and designing robust database structures.

4 thoughts on “Warning: Diigo has been Domain Hijacked – Oct 25 2012”

  1. Pingback: Warning: Diigo has been Domain Hijacked – Oct 25 2012 | Web App Dev | Scoop.it

  2. Been searching all day for information. I was redirected to different sites. One was a log in for Monstor and one was a site that said diigo.com and had fake links.

    Reply

    1. Looks like Diigo is still down, I hope they get it fixed soon.

      I’ve run some scans and haven’t found any malware installed from the redirected sites. I’m hoping a redirect to some fake links is all it is and nothing more serious.

      Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s