A World-wide Scam Network
A fellow researcher (thanks, Kimberly!) recently asked about an odd domain (seamaster.pw) she'd seen show up in a page in her browser as she was visiting a normal web site. It turned out to be worth a look...
As background, several months ago, we recommended that people consider blocking the whole .pw domain. (We continue to run into shady .pw domains on a regular basis.)
Anyway, back to seamaster.pw...
It's being fed traffic almost entirely by ads.yahoo.com, with a bit of traffic from other ad networks.
In turn, it's sending most of its traffic to sebcotrk.com, with a bit going directly to a scammy site. Which turns out to be no coincidence, seeing that sebcotrk.com is sending its traffic to a world-wide network of scam sites:
(BTW, I Googled for Krishna Karpal from Mumbai, and did not find her blog -- maybe the "reporter" who wrote this was a better researcher than I am -- but there were lots of sites calling her a fraud. And other things.)
Let's see.. So far, that's India, Australia, Columbia (the .co domain), America, Taiwan, Poland, and Australia again.
On another branch of the network, it's a Portuguese pop-up:
Hey, maybe I'll try this one -- I'd like to win an iPad!
Wait! I think I know this one... Yeah, I think the guy who founded Apple was Bill Gates! That's it! I'm sure of it!
Woo-hoo! I was right!
(I have to say that it's hard to respect scammers who are so clumsy that they'll claim to hand out iPads to people who mix up Bill Gates and Steve Jobs...)
So no malware, but definitely a big network of scam sites. And they all get a well-deserved Scam/Questionable rating. (We can't spend all of our time just catching malware, after all. There's a lot of other junk out there on the Web to clean up.)