Persistent malicious attacks have plagued The Fogbow forum over the past couple of weeks, with an extended outage caused by someone calling themself AnoaGhost, presumably from Indonesia.
Now instead of merely defacing The Fogbow, attackers have added links (somewhere) to another web site that attempts to install malware on the visitors’ computers, according to Google Safe Sites. The malware reports started sometime yesterday evening. Bill (Foggy) Bryan said by Facebook just over an hour ago:
OK, an update. I give up on my hosting company. I’m paying $200 a month, and they used to be great at tech support, but now they’re just not helping. So I found a new hosting company, super fast servers, same amount of memory and bandwidth. Less money, too.
But I have to set it up, which means I have to transfer all the files and the DNS, which means we’ll be offline for another day or so while the DNS entry propagates around the globe. There’s a learning curve for me, too. So it’s a hassle and a waste of my time that I should be doing other things, but if I stay with my current hosting company we’ll have malware for the rest of my life, and that’s taking too much time too.
Also, Fogbow is my only site that gets massive amounts of traffic. Maybe part of the problem was that I have many other websites on this hosting account, and it seemed that those were possibly used to access my whole server. I will keep this account Fogbow ONLY.
Bottom line, we’ll go offline tomorrow morning and I am not sure when we’ll come back up, but this is the best solution I can devise at the current time.
So The Fogbow will be moving to a new hosting company, which will require software installation, database migration and waiting out the DNS changes. As I said back at the start of 2012:
Changing hosting companies can be like switching checkout lines at the market. Sometimes switching from something that looks bad to something that looks good turns out to be the wrong decision in the end.