Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It's amazing to me that anyone who tried to go to a website, then was redirected to an online sports betting site instead of the site they wanted to go to, would be like "hmm, better do some sports gambling instead, and hey this looks like just the website for me". This sort of thing must work on some percentage of people, but it's disappointing how much of a rube you'd have to be to fall for it.


I'm genuinely puzzled that a group with the ability to hijack 100k+ websites can think of nothing more lucrative to do than this.


Even with low rates, my first thought would probably be crypto mining via wasm. I'd never do it, but would have been less noticeable.


Or DDoS, residential proxy, product reviews... one would really think there'd be something more lucrative to sell.


maybe they did all of that too, and still had a lot of traffic/endpoints to spare/sell?


You’d think they’d contract with some hacker group or government and use it as a vector to inject something more nefarious if money was their goal


Yeah, I guess they just genuinely love sports betting


Yes, but if you reduce your overall risk, your chances of actually receiving a payout increase immensely.


That's the parasitic equilibrium: "try to take too much - oops, now you killed yourself by becoming too much of a nuisance."


"ability" here meaning they bought the domain and the "GH repo"


I can't find the reference now, but I think I read somewhere it only redirects when the user got there by clicking on an ad. In that case it would make a bit more sense - the script essentially swaps the intended ad target to that sport gambling website. Could work if the original target was a gaming or sport link.


This assumes that advertisers know how the traffic came to their site. The malware operators could be scamming the advertisers into paying for traffic with very low conversion rates.


It plants a seed. Could be a significant trigger for gambling addicts.


It could be targeting people that already have such a website's tab open somewhere in the browser.

Assuming the user opened the website and didn't notice the redirect (this is more common in mobile), then forgot about it and when they opened their browser again a few days later, their favorite gambling website was waiting for them, and proceeded to gamble as they usually do.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: