Suspended hostgator website hacked and defaced...

See: -http://expertoenpuntonet.com/ (POST 1,001 params) Hacked By SvN_NeVerMore 7,093 bytes 332 ms

The nameserver is DROWn vulnerable: https://test.drownattack.com/?site=ns8051.hostgator.com
Warnings
BEAST
The BEAST attack is not mitigated on this server.
Certificate information
This server uses a Domain Validated (DV) certificate. No information about the site owner has been validated. Data is protected, but exchanging personal or financial information is not recommended. Comodo RSA chain certificate…
And on the Hostgator site, jQuery library code to be retired ::slight_smile:
-http://192.185.32.232/404.html
Detected libraries:
jquery - 1.9.1 : (active1) -http://code.jquery.com/jquery-1.9.1.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
(active) - the library was also found to be active by running code
1 vulnerable library detected

The other script running there and see where it lands: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fsuspended.hostgator.com%2Fjs%2Fsimple-expand.min.js
This website is flagged by WOT and Bitdefender TrafficLight as a PHISH.

Finally the hacked and defaced hostgator hosted suspended website: http://killmalware.com/expertoenpuntonet.com/#

Insecure IDs tracking detected: This website is insecure.
75% of the trackers on this site could be protecting you from NSA snooping. Tell expertoenpuntonet.com to fix it.

Identifiers | All Trackers
Insecure Identifiers
Unique IDs about your web browsing habits have been insecurely sent to third parties.

d1e4866fcea652e8xxxxxxxxxxxx85ba21461098572
-icons.iconarchive.com __cfduid
Server: nginx/1.8.1

Configuring the application to not return unnecessary headers keeps this information silent and makes it significantly more difficult to identify the underlying frameworks.