My website host, VistaPages, is apparently undergoing a phishing attack. All websites on my webserver, including their own official pages, are receiving an extraneous iframe tag being inserted onto the bottom, so it's not a problem with my site but an apparent malicious script which is embedded in the server's software itself. (It's taking some teeth-pulling to convince them, too, when the HTML code is quite obviously there.)

If you reuse the same password you use everywhere else to login to Newtopia, I definitely advise you not to log in to Newtopia's forums in the interim. If you have already tried to log in and failed, your password was probably harvested. I'll let you know when the extraneous linkage has been culled from the webserver, at which point I'd advise that you change your password right away.

This is the cincher, incidentally. As soon as I'm able to take everything down and cut the mooring lines without tearing off the ship's stanchions, I'm leaving that port forever and moving elsewhere (most likely to Canaca.com). VistaPages has terrible security and every time they try to update everything, everything breaks in a bad way. Also, though the exposed-to-internet side of my account enjoys significant uptime, I can't access my private admin section half the time. Nuts to them.


If you want to check this for yourself, then using a clean browser session you can visit http://www.jtgibson.ca/ and View Source to see whether there is an IFRAME tag at the bottom containing a link to "stelaartois.ru". If it's not there, the site's been fixed. Somehow I doubt that it'll disappear by the time you read this, however.