Careful visiting Fermentis.com website - malware warnings

Homebrew Talk - Beer, Wine, Mead, & Cider Brewing Discussion Forum

Help Support Homebrew Talk - Beer, Wine, Mead, & Cider Brewing Discussion Forum:

This site may earn a commission from merchant affiliate links, including eBay, Amazon, and others.
I just ran across that as well. I was hoping to find some flavor profiles of their yeasts. Anyhow, thanks for the warning! Hopefully they're up and running soon.
 
It's been like that for a while. I wonder what the deal is? Does anyone know what's going on, exactly? I'd like to check their info sheets periodically, but I hesitate due to this warning.
 
Some of the javascript code they use is stored on a Russian server that was also hosting malware. There's nothing wrong with Fermentis' site. They just chose a poor place to either host or reference some code.
 
hal2814 said:
Some of the javascript code they use is stored on a Russian server that was also hosting malware. There's nothing wrong with Fermentis' site. They just chose a poor place to either host or reference some code.
Click to expand...

According to the Google crawler, they were serving up malware.

From the Google diagnostic page:
What happened when Google visited this site?
Of the 3 pages we tested on the site over the past 90 days, 3 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-07-25, and the last time suspicious content was found on this site was on 2010-07-25.
Malicious software is hosted on 5 domain(s), including postfolkovs.ru/, webservicebal.ru/, webserivcezub.ru/.
This site was hosted on 1 network(s) including AS35012 (PICTIME).
 
JonW said:
According to the Google crawler, they were serving up malware.

From the Google diagnostic page:
What happened when Google visited this site?
Of the 3 pages we tested on the site over the past 90 days, 3 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-07-25, and the last time suspicious content was found on this site was on 2010-07-25.
Malicious software is hosted on 5 domain(s), including postfolkovs.ru/, webservicebal.ru/, webserivcezub.ru/.
This site was hosted on 1 network(s) including AS35012 (PICTIME).
Click to expand...

No, according to Google's site, those .ru servers were serving up malware. fermentis.com was not. Read the rest of the diagnostic page:

Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, www.fermentis.com did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.

How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.
Click to expand...
(emphasis mine)
 
I read it all. I think you are misinterpreting what they are saying.

Just as you said in your first post on the subject, Fermentis is linking to external javascript - and that is where the linking to the malware is taking place. The malware is not ON their site, but because they are using external code (that was likely compromised), their web pages (not site) ends up serving up the malware. Just because the malware is not sitting on their server doesn't mean they're not serving it up. They were not simply implicated because some other site had malware on the same server - they were actively serving it up.

Here's the key point from the Google report:
resulted in malicious software being downloaded and installed without user consent
 

Similar threads

Auror
Visiting Boston (Winter '13/'14 Edition)
Replies
26
Views
4K
bearsonacid1
bearsonacid1
schmaltzy
Replacement Yeast Help!
Replies
15
Views
1K
Old_E
O
B
The Great Brettanomyces Experiment
Replies
34
Views
14K
berebrando
B
jcarson83
RateBeer
Replies
1
Views
1K
Rick500
Rick500
cazzamatazz
Skeeter Pee: A Beginners' Resource
Replies
2
Views
8K
056r
0

Latest posts

Back
Top