Mpack Attacks Originate From Porn Sites

LOS ANGELES — A wave of cyber attacks said to be originating from several hundred pornography websites has exposed surfers to the notorious Mpack hacker toolkit. The attacks were launched from a network of more than 10,000 compromised domains, according to Computer World.

Mpack, developed by Russian hackers, is a collection of exploits that compromises the security of infected PCs. Close to 200 porn domain names have been hacked to redirect to servers hosting Mpack. The attacks were said to have begun June 17.

“The pornographic sites, which tend to specialize on incestuous content, have an obfuscated I-Frame code appended at the end of the HTML code,” Ryan Flores said on the Trend Micro blog. “This I-Frame redirects to another domain that will serve a script file to download a copy of TROJ_AGENT.QMN. Right now, we are not sure whether the porn sites are compromised to host the I-Frames, are created to do so, or are being paid to host the I-Frames.”

Symantec security analyst Amado Hidalgo told Computer World that he believes the “Mpack gang appears to be using an I-Frame manager tool to automate the task on a large scale,” which is how the hackers were able to infect so many sites in a short time. This manager tool is successful because it injects the malicious I-Frame code to the sites’ HTML that redirects surfers to the Mpack server.

“It takes as input a list of website administrator accounts, possibly obtained in the black market,” Hidalgo said. These accounts are logged into the manager tool, which enables previously purged sites to become re-infected.

“A simple cleanup of the page is not sufficient,” Hidalgo said. “The site administrator’s credentials need to be changed.”

Mpack was created by a hacker who goes by the name $ash. The toolkit sells for around $1,000.

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Taylor Nicole Launches New Site Through YourPaysitePartner

Creator Taylor Nicole has launched her new official website through YourPaysitePartner (YPP).

Adult Networking Platform SpicyGigs.com Launches

SpicyGigs, a new adult industry networking platform, has officially launched.

Pineapple Support to Host 'Cream Pie Challenge' Fundraiser

Pineapple Support is hosting its Cream Pie Challenge through August to raise funds for mental health services for industry performers.

Kyrgyzstan President Signs Measure Outlawing Internet Porn

President Sadyr Japarov of Kyrgyzstan on Tuesday signed into law legislation outlawing online adult content in the country.

NC Legislature Overrides Veto of Extreme Anti-Adult Industry Bill

The North Carolina state legislature on Tuesday voted to override Gov. Josh Stein’s veto of a bill imposing regulations that industry observers have warned could push adult websites and platforms to ban most creators and content.

Report: VPN Downloads Soar in UK Following Age Verification Deadline

Virtual private network apps, which can be used to circumvent geo-specific age verification requirements, are topping Apple App Store downloads in the U.K. in the wake of new Online Safety Act rules, the BBC is reporting.

Strike 3 Holdings Sues Meta for Pirating Vixen Media Group Content to Train AI

Vixen Media Group owner Strike 3 Holdings filed suit in federal court this week, accusing Facebook parent company Meta of copyright infringement and alleging that Meta has extensively pirated VMG content to train its artificial intelligence models.

Pineapple Support, Streamate to Host 'Navigating Grief and Loss' Support Group

Pineapple Support and Streamate are hosting a free online support group to help performers cope with grief and loss.

Friday is Final AV Compliance Deadline in UK

Friday, July 25 marks U.K. media regulator Ofcom’s deadline for user-to-user services such as tube, cam and fan sites to implement its requisite “highly effective age assurance” measures for preventing minors from viewing adult content.

AEBN Publishes Popular Searches for May, June

AEBN has released the top search terms for the months of May and June from its straight and gay theaters in all 50 states and the District of Columbia.

Show More