Be cautious with Woodstock's Web Site

  • Active since 1995, Hearth.com is THE place on the internet for free information and advice about wood stoves, pellet stoves and other energy saving equipment.

    We strive to provide opinions, articles, discussions and history related to Hearth Products and in a more general sense, energy issues.

    We promote the EFFICIENT, RESPONSIBLE, CLEAN and SAFE use of all fuels, whether renewable or fossil.
Status
Not open for further replies.
timusp40

timusp40

Feeling the Heat
Feb 3, 2010
266
Lake Orion, Michigan
I just got a confirmation from Woodstock that some low life has hacked their Web Site. I was trying to open a photo gallery and to my surprise, it was directing me to Mexico for prescription drugs. Woodstock says that the site is safe. Just be careful what you open. They are working in a fix.
Take care,
Tim
 
timusp40 said:
I just got a confirmation from Woodstock that some low life has hacked their Web Site. I was trying to open a photo gallery and to my surprise, it was directing me to Mexico for prescription drugs. Woodstock says that the site is safe. Just be careful what you open. They are working in a fix.
Take care,
Tim
Click to expand...
So did you buy a cord of Viagra?

Ray
 
  • Like
Reactions: dylskee, weatherguy, Pallet Pete and 12 others
Tramontana said:
Well, I guess there is more than one way to put up wood? ;em
Click to expand...
now now guys! We can make light of the situation, but I'm sure the good folks at Woodstock are pretty peaved.
 
  • Like
Reactions: Pallet Pete, rideau and Backwoods Savage
timusp40 said:
now now guys! We can make light of the situation, but I'm sure the good folks at Woodstock are pretty peaved.
Click to expand...
Yup but brooding isn't gonna fix it humor goes a long ways when the poop hits the paddle ;) This sort of thing happens quite often on the net..

Ray
 
  • Like
Reactions: Blue Vomit
Seems there are too many jerks in this world. Never could understand how someone gets a thrill out of doing damage to someone's property or to a company. Methinks it is more than bad genes.
 
  • Like
Reactions: dylskee
timusp40 said:
now now guys! We can make light of the situation, but I'm sure the good folks at Woodstock are pretty peaved.
Click to expand...

Probably so, but that doesn't make it not hilarious.
 
I respect and like the Woodstock people as much as anyone else here and have met quite a few. There are some very smart people that like to hack websites because it's a challenge to them. Most do it for the challenge with no financial reward they are just geeks that need to flex their mental muscles. It doesn't make it right but they also expose weaknesses and in fact warn those with less than secure websites that they are vulnerable. I do not condone this sort of activity it simply exists and always will. Today's modern criminals rob you electronically and many times they are so sly that it goes undetected for a long time. Bottom line be safe, keep your anti-virus current and pay attention to your bank accounts and to report any suspicious activities.

Ray
 
I was hacked by some jerk while trying to sell my wood furnace on CL. They responded to my add and asked a few questions about the unit. I stupidly responded, and it all hit the fan right after that. The jerk gave us a virus or something that attaches to your e-mail and sent out e-mails about purchasing viagra to all our contacts. If our contacts opened the e-mail, it hooked into their e-mail and kept the cycle goiing. It was bad.Had to change our e-mail address.....People amaze me sometimes. who the hell gets off on that sh.... Just be careful on the web, etc...
 
LOL!!!!!;lol
 
Who would want to hack a wood stove company's web site I mean what the F$%^.
 
If a bikini wearing babe appears in a pop up ad when you're on the site and starts telling you how hot she gets with a Woodstock stove you know the site may have been compromised. ;)
 
  • Like
Reactions: corey21, etiger2007 and raybonz
etiger2007 said:
Who would want to hack a wood stove company's web site I mean what the F$%^.
Click to expand...

A disgruntled employee? Unhappy customer? Perhaps a hacker just searching for a certain type of webserver that he knows a vulnerability, not caring what the site is even about... Lots of possibilities. A lot of times it comes through the advertising that most sites already have, not that woodstock does.

And its not just 'hackers' doign it for fun all the time, I mean folks get paid to do things like this, its a business in some cases. Sick individuals.
 
It's likely just an injection by folks who make money from you clicking on the links that lead to good drugs!

The strange thing about the attack on their site is that the vast majority of people don't see it! That is, they didn't know until a customer told them and they have a hard time reproducing it.....

I think they are on it.....at least they were on the case when I visited last week.
 
+1 webbie. They likely didn't pick on Woodstock because they're Woodstock - that just happened to be a web site with the necessary vulnerabilities / exposure. Any site will do in that regard.

But the comments above (raybonz and traymontana) are just way too funny.
 
  • Like
Reactions: raybonz
OhioBurner© said:
A disgruntled employee? Unhappy customer? Perhaps a hacker just searching for a certain type of webserver that he knows a vulnerability, not caring what the site is even about... Lots of possibilities. A lot of times it comes through the advertising that most sites already have, not that woodstock does.

And its not just 'hackers' doign it for fun all the time, I mean folks get paid to do things like this, its a business in some cases. Sick individuals.
Click to expand...

Sick is right.
 
Script kiddies or maybe automated subnet scanners looking for database injection flaws, PHP exploits. Often times the automated scanners just scan the internet and become part of the collective botnet when compromised. It often isn't someone directly sitting down and hacking the site.
 
Treacherous said:
Script kiddies or maybe automated subnet scanners looking for database injection flaws, PHP exploits. Often times the automated scanners just scan the internet and become part of the collective botnet when compromised. It often isn't someone directly sitting down and hacking the site.
Click to expand...

RIght, their site - and most sites - are based on scripts which are well known and once someone figures a way in, they tell all the other Black Hats and on it goes. I'm sure the $$ add up after awhile.
 
zap said:
Is that a face cord or a real cord? ;)
zap
Click to expand...
Real cords of course! He'll have to settle for rounds though as the alternative is too painful lol.. !!!

Ray
 
  • Like
Reactions: zap
firefighterjake said:
If a bikini wearing babe appears in a pop up ad when you're on the site and starts telling you how hot she gets with a Woodstock stove you know the site may have been compromised. ;)
Click to expand...

If bikini clad babes pop up and Viagra is for sale, there may be more "pop ups" to follow!!!
 
  • Like
Reactions: raybonz
If you Google for Woodstock, Google has a warning just under the title that "this site may be compromised" Fortunately, it's not a breach with serious consequences. Sometimes they are.

On the lighter side, some folks may consider this as a positive extra service from Woodstock. You, know, like an alternate heat source...
 
I believe we have the hack cleaned out. We never saw it here except for some screen shots sent to me by a customer. Yes, it was a old PHP script which left the site vulnerable. Amazing how these idiots have nothing better to do with their time. If I could find the person(s) who did it I'd string 'em up by the cojones. Information has been sent to Google so hopefully the "compromised website" will go away but it takes time for these things to filter through the net completely. ARRGGH!
 
  • Like
Reactions: Backwoods Savage, corey21 and raybonz
Update: It appears that the "compromised website" is gone from Google, at least from what I can see. It may take some refreshes for others if they still see it. It really was a benign hack and was not doing any damage, other than making us look like drug runners, but what a PITA! I don't know if the general web public realizes how much time, effort, and money goes into cleaning up crap like this. Some people have way too much time on their hands and need to get a job. Can you tell this has upset me just a bit :)
 
  • Like
Reactions: timusp40, Backwoods Savage, corey21 and 1 other person
Status
Not open for further replies.

Similar threads

A
Help on selecting approved stove and or insert to upgrade fireplace
Replies
20
Views
1K
The Hearth Room - Wood Stoves and Fireplaces
begreen
begreen
30WCF
Key Damper Theory
Replies
44
Views
2K
The Hearth Room - Wood Stoves and Fireplaces
T-Rav
T-Rav
A
looking for installation advice on Jotul F 3
Replies
13
Views
1K
Jotul
begreen
begreen
V
Smoke Smell King KE40
Replies
36
Views
3K
Blaze King
Hoytman
H
E
Strong Draft and Flue Temps
Replies
11
Views
651
Travis Industries: Lopi, Avalon, FPX
EbS-P
EbS-P
Top Bottom
Back