View Source of the art.com compromised page shows a bitly short URL link (a way to make shorter links, but also used to semi-hide where a link goes).
As you can see in the screenshot above of the source code the Clickbank affiliate link is semi-hidden via a bitly link, you can also see the surrounding code is the normal art.com webpage code indicating the SEO link SPAMMER hasn’t hacked the art.com site per se, (they haven’t uploaded HTML webpages) but has presumably found an exploit in their membership system which allows them to add the above affiliate link code as part of the profile or something (will be stored in the database): I’m not an art.com member so no idea how their system works.
Can guess whoever wrote the code behind the membership part of the site isn’t sanitizing the uploaded data allowing HTML code to be uploaded and output as HTML code (rookie mistake).
Continue Reading Cyber Security and SEO Link SPAM