The Dangers of Hosted Scripts – Hacked jQuery Timers

thehackingmedia.blogspot.com

Google blacklisted a client’s web site claiming that malicious content was being displayed from “forogozoropoto(dot)2waky (dot)com”.

A scan didn’t reveal something suspicious. succeeding step was to examine all third-party scripts on the web site. before long we tend to found the offending  script. it absolutely was hxxp://jquery .offput .ca/js/jquery.timers.js – a jQuery Timers plugin that was moderately fashionable 5-6 years agone.

Right now, the jquery.offput.ca web site is hacked. the house page seems to be blank, however it contains some hidden links, one in all that results in a company spam entryway on another hacked site: