{"id":72613,"date":"2011-05-16T12:16:09","date_gmt":"2011-05-16T12:16:09","guid":{"rendered":"https:\/\/localhost\/wordpress\/?p=72613"},"modified":"2011-05-16T12:16:09","modified_gmt":"2011-05-16T12:16:09","slug":"dna-e-newspaper-website-infected-with-fake-antivirus","status":"publish","type":"post","link":"https:\/\/www.quickheal.com\/blogs\/dna-e-newspaper-website-infected-with-fake-antivirus\/","title":{"rendered":"DNA e-newspaper website infected with fake antivirus"},"content":{"rendered":"<p>Daily News and Analysis (DNA) is an Indian daily English newspaper published from Mumbai, Ahmedabad, Pune, Jaipur and Bangalore in India.<\/p>\n<p>We found that one of the pages from this e-newspaper site was infected with malicious script.<br \/>\nHere is the screenshot of that page:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/blogs.quickheal.com\/wp-content\/uploads\/archive\/DNA_1.JPG\" alt=\"\" width=\"630\" height=\"540\" \/><\/p>\n<p>The malicious script tag had been inserted in plain text as can be seen in this screenshot of page<br \/>\nsource:<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/blogs.quickheal.com\/wp-content\/uploads\/archive\/DNA_3.JPG\" alt=\"\" width=\"730\" height=\"305\" \/><\/p>\n<p>The malicious script tag directs the victim\u2019s browser to \u2018hxxp:\/\/vcvsta.com\/ur.php\u2019. This page then redirects the user to another malicious site (\u2018hxxp:\/\/www4.to-gysave.byinter.net,), which will again redirect victim to random sites hosting fake antivirus campaigns.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/blogs.quickheal.com\/wp-content\/uploads\/archive\/DNA_5.JPG\" alt=\"\" width=\"294\" height=\"178\" \/><\/p>\n<p>Quick Heal Successfully blocks the malicious url and protect the users.<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Daily News and Analysis (DNA) is an Indian daily English newspaper published from Mumbai, Ahmedabad, Pune, Jaipur and Bangalore in India. We found that one of the pages from this e-newspaper site was infected with malicious script. Here is the screenshot of that page: The malicious script tag had been inserted in plain text as [&hellip;]<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-72613","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts\/72613"}],"collection":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/comments?post=72613"}],"version-history":[{"count":0,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/posts\/72613\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/media?parent=72613"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/categories?post=72613"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.quickheal.com\/blogs\/wp-json\/wp\/v2\/tags?post=72613"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}