We’ve seen this before — tikis, wikis, etc. that have been hacked to serve porn.
For example, look at these Google results here (warning: highly offensive content).
One of the CastleCops volunteers is working on a hacked .edu site right now that’s running a c99 shell and generating porn links like crazy.
Some of the links are trying to push Contravirus, a rogue antispyware program.
Some of these links are neglected forums and guestbooks collecting spam, but I’ll wager a good percentage of the sites in the google results are hacked.
Many links are being taken down, but here’s some some sample links that are live right now:
depts(dot)washington(dot)edu/archdept/cms/photogallery/1/zoo9(dot)html
www(dot)uvm(dot)edu/~astauffe/1/zoo3(dot)html
www(dot)wtc-ep(dot)edu/newsletter/template/images/7493579/96776/
Do NOT click on the links. They could be serving malware or child porn — who knows.
Alex Eckelberry
(Thanks Suzi, and credit to the good volunteers at CastleCops who are trying to put out this fire.)