Host4africa Mass Compromise

We are seeing a lot of sites hosted at compromised with Blackhat Spam SEO. Most of them are in the TLD (at and and have hidden links to generic drugs (common Pharma Spam).

When you on click on links added to the compromised sites you are redirected to a Pharma page, like this one:

The number of sites compromised is pretty large. Here are some we identified on one site:

As you can see, the spam is hidden in sub-directories for various types of sites (plain HTML, WordPress, Joomla, etc). It leads us to believe that this is a hosting compromise.

Are you hosting here? Having any malware or spam issues? You can try our free scanner to test:

You May Also Like