I’ve periodically announced the fact that I believe that – this website (spontaneoudevelopment.com) – is a target of selectively orchestrated online attacks. Well, this past Wednesday 22nd May 2013, I got a detailed email from Google Web master Support confirming some of my suspicions.
Below is the detailed hacker email alert sent me by Google, and also the email I’ve since sent to my web host – in line with the advice given by Google.
I’ve also already commenced taking action to clean out the mentioned sites.
(Yesterday a power blackout lasting from about 8.30a.m till 10pm across Benin Republic meant I was unable to start earlier).
| Subject: [Fwd: [Webmaster Tools] Message summary]
From: tayo at spontaneousdevelopment dot com
Date: Thu, May 23, 2013 10:57 am
To: support at hostgator.com
Cc: tayosolagbade at gmail dot com
Priority: High
Read receipt: requested
Hi
Google just gave me this heads up (see forwarded email below).
A few days back, I got an email that suggested efforts were being made to
sabotage my website. This confirms it.
See a blog post I put up about it:
http://spontaneousdevelopment.com/sdnuggets/fyi-orchestrated-sabotage-campaign-against-this-website/
Can you give me any ideas of how to proceed in resolving this problem.
Would appreciate any help you can give.
Thanks in advance,
With kindest regards,
Tayo
PS: Sometimes I even get the feeling my emails are being intercepted and
blocked. But again, I can’t prove it. Maybe this has something to do with
it.
—————————- Original Message —————————-
Subject: [Webmaster Tools] Message summary
From: wmt-noreply at google.com
Date: Wed, May 22, 2013 7:37 pm
To: tayo at spontaneousdevelopment dot com
————————————————————————–
Google Logo
Message summary
Webmaster Tools sent you the following important messages about sites in
your account. To keep your site healthy, we recommend regularly reviewing
these messages and addressing any critical issues.
Notice of Suspected Hacking on
http://www.excelheaven.spontaneousdevelopment.com/
Dear site owner or webmaster of
http://www.excelheaven.spontaneousdevelopment.com/,
We are writing to let you know that we believe some of your website’s pages
may be hacked. Specifically, we think that JavaScript has been injected
into your site by a third party and may be used to redirect users to
malicious sites. You should check your source code for any unfamiliar
JavaScript and in particular any files containing “counter.php”
style=”visibility: hidden; position: absolute; left: 0px; top: 0px”
width=”10″ height=”10″. The malicious code may be placed in HTML,
JavaScript or PHP files so it’s important to be thorough in your search.
The following are example URLs from your site where we found such content:
http://www.excelheaven.spontaneousdevelopment.com/buy_xl_software.htm
http://www.excelheaven.spontaneousdevelopment.com/pu_coaching.htm
[deleted text]
Notice of Suspected Hacking on http://www.iff.spontaneousdevelopment.com/
Dear site owner or webmaster of http://www.iff.spontaneousdevelopment.com/,
We are writing to let you know that we believe some of your website’s pages may be hacked. Specifically, we think that JavaScript has been injected into your site by a third party and may be used to redirect users to malicious sites. You should check your source code for any unfamiliar JavaScript and in particular any files containing “counter.php”
style=”visibility: hidden; position: absolute; left: 0px; top: 0px”
width=”10″ height=”10″. The malicious code may be placed in HTML,
JavaScript or PHP files so it’s important to be thorough in your search.
The following are example URLs from your site where we found such content:
http://www.iff.spontaneousdevelopment.com/feb06.htm
In addition, it’s also possible your server configuration files (such as
Apache’s .htaccess) have been compromised. As a result of this, your site
may be cloaking and showing the malicious content only in certain
situations.
We encourage you to investigate this matter in order to protect your
visitors. If your site was compromised, it’s important to not only remove
the malicious (and usually hidden) content from your pages, but also to
identify and fix the vulnerability. A good first step may be to contact
your web host’s technical support for assistance. It’s also important to
make sure that your website’s software is up-to-date with the latest
security updates and patches.
More information about cleaning your site can be found at:
http://support.google.com/webmasters/bin/answer.py?hl=en&answer=163634
Sincerely, Google Search Quality Team |
|
Here’s My Understanding Of The Discovery Made By Google About Attacks On My Websites
I’m sharing all this information to help others, who now, or in future, may have similar experiences. It always helps to read about what others faced, and measures they took to recover.
The malicious code discovered on my websites by Google, was found to be (selectively) redirecting people who visit my website to possible scam – or spam – websites.
So, when someone visits my website from Google, they may even get a virus or malicious code warning about my website. And this will make the intending visitor quickly leave! They never arrive at that page. But I won’t know its happening.
In the meantime, Google will exclude that page from their searches – and I will receive less visits, enquiries and subscribers. That’s been happening – but my consistent blogging has helped cushion the effects a little bit.
See how complicated this whole issue is – and it’s devastating effect on my ability to earn more income?
Additional Insights Into The Negative Impact Of This Hacker Attack
It’s with this Google confirmation that I’m now able to put 2 and 2 together, to make sense of the strange experiences I’ve been having.
Burt Dubin has – as usual – kindly written in, on learning of this new development. My thanks to him – and my friends/family – for all the moral support, as I tackle these different efforts to pull me down (and they are MANY I tell you – without exaggeration).
There’s a consistent odd/tell tale trend I’ve noticed in these attacks. And those I’ve pointed it out to agree with me, that it is a good sign that these attacks are being done (or sponsored) by people who know me, and who want to discredit me. They are not the usual random attacks.
For instance, specific pages and documents on my website (e.g. my PDF resume, learning event PDF flyers and other pages specifically used to showcase my products and services for sale) are selectively attacked – not the entire website!
They also attacked my popular articles (which I still have on HTML pages) that attract a lot of readers. Those pages used to come up in Google, now they don’t.
The obvious purpose is to prevent me from gaining enough credibility to convert more visitors into buyers (like I did with the Canadian Farm Project Manager priest – to their surprise I’m sure).
It’s even affected my efforts to gain marketing traction for my learning events and new products here in Benin Republic. I’ve had so many in-person meetings that started out looking promising.
Then we would part by exchanging cards, and the prospects would promise to visit my website as agreed, in readiness for a follow up meeting.
As you can imagine, a visit to the website that results in a virus warning or a scam offer will NOT inspire any confidence in a prospect to pursue furthr relations with the owner!
Now consider the REAL possibility that ALL those I’ve been sending my Guest Posts, English-French Guide CDROMs and Seminar proposals to have been having that experience?!!
Our Websites Need To Be Protected – And We Will Often Need All The Help We Can Get
I’m not giving details of the solution I’ve settled on.
But the trends I’ve noticed in these attacks strongly suggest implementing it will make a lasting world of difference. Where I’ve been using this planned solution, I’ve NEVER had this problem, so I intend to simply extend it to the rest of the website.
Sadly, all this has prevented me from building on my success from a few months back.
It took a lot of work to get that far. I’d continued work to build on it. But I found it so strange that everything just came to an almost complete halt.
Google has now helped show why this happened, with this email advice they sent me. I’m now working hard to clean up the entire website to (as they correctly put it) protect my visitors/users.
Most of what I’m trying to achieve in my business (online and off the web) depends on how my website presents me.
That’s where I put up most of my marketing material to support even my offline efforts. Today, people readily Google you, and check your website out to make up their minds.
Mine has helped me earn decent income (and achieve great marketing mileage/exposure) while spending VERY little – even from Nigerians who find it hard to trust themselves talk less of others.
They’ve sent me money from different parts of the country. I have CEOs in Lagos, Niger, Kano, Ibadan and other places who own businesses (e.g. farms, and other companies) that have bought my handbook and subscribe to my newsletter, and are now friends but we’ve never met!
Someone I’d never met before even sent N35,000 (approx. $230 USD) into my bank account, two full weeks before travelling from over 8 hours away in Akwa Ibom, to meet me in Lagos. It was on a Saturday, and I spent about 4 hours putting him through practical Feed Formulation at a feed mill in Oko Oba, late last year.
Why Would A Stranger Send Me Payment 2 weeks Ahead For An In-Person Training? It Was Simply Based On What He Read On My Website.
And That’s How Powerful Your Writing Can Be!
If you own a website, you probably depend on it to achieve similar goals.
That’s why when your website is not in a good state of health, your chances of making useful progress are limited.
So, this kind of attack is something we all need to protect ourselves against. And we will often need all the help we can get to do so successfully.
When focussing on the serious business of attracting clients for your services, it can be annoying to discover “hidden”
attacks like these diluting one’s efforts. This has been an on-going battle for close to 2 years now.
Everytime I
clean it out, they come right back. I’m determined to make this
the last.
I’m grateful for the support provided by Google via their Webmaster tools email alert, and for my web host (Hostgator)’s usual amazing support.
PS: Oh, by the way, I know the “bad guys” are on my newsletter mailing list, and also possibly tune in via RSS etc. So they’re always lurking, with malicious intent.
Well, Here Are Some FINAL WORDS for Those Haters to Chew On…
A proverb in my language (Yoruba) says:
“Ota o le pa kadara mi da. Won kan le fa owo ago pada si ehin ni”
Literal translation: Enemies/haters/evil-doers cannot change my destiny. They can only pull the hands of the clock backwards”.
Contextual translation: “People who try to hurt/stop you can never succeed unless you let them. The best they can do is to slow you down. Eventually, if you don’t stop, YOU will wear THEM down.”
And of course, I hope you know that your “destiny” is what you make of it?
Yes it is!
Like Williams Jennings Bryan said…
“Destiny is not a matter of chance, but of choice. Not something to wish for, but to attain.”
Sigh. If these guys knew where I draw my inspiration from, they would have quit long ago. But becasue they are so DAFT, they persist in wasting their time.
How do you stop a guy who simply does not understand how to give up?
Your best bet is: Shoot him…and make sure you don’t miss!
The problem you will have is MY creator will not let ANYONE succeed in doing that to me.
Evil can never triumph over GOOD. Falsehood can never defeat TRUTH. Period.
So “haters”, if you can find better things to do with your time, I’d really advise you do SO NOW. You will NOT win this war. I’m in this to the end – and by then I’ll be the last one standing. Believe it.
