That these detections for “Detected SutraTDS HTTP GET request” (just google this search term given between " ") are seriously involving grand money sums is shown that it comes up in Daily Stock tips, where this flagged site was mentioned: http://urlquery.net/report.php?id=46380
Yes, folks, SERP hijacking is going on on a immense scale to-day.
Just for that reason checking URLs at urlQuery.net may be well worth finding up this specific IDS alert. Off course other IDS alerts for RNN, Blackhole, etc. etc. are also important issues you like to be alerted to and other url scanners may not present them that way. Suricata w Emerging Threats will add a complete new additional rule based security layer to url scanning,
Thanks for that very informative link, bookmarked it
So this could lead to click fraud performed and also ransomware
Good you have posted this here, so that users that follow these postings are aware of these threats,
I mean webmasters included. As I notice how many webservers does not even have minimal security protection
and are vulnerable via holes in outdated unpatched website software, plug-ins etc, this is alarming really,
Another with also additional malware involved, see: htxp://urlquery.net/report.php?id=54850
urlQuery Client Internal IP ET MALWARE All Numerical .ru Domain Lookup Likely Malware Related
Not found with a static scanner: htxp://zulu.zscaler.com/submission/show/75fd5df2419190372c36e7bba699c5c9-1337007972
but again detected here at Sucuri’s: htxp://sitecheck.sucuri.net/results/bigtopfleamarket.com/