Tech Support Posted May 28, 2020 Share Posted May 28, 2020 Our customers report that AddThis component inserts malicious advertising. The following code was noticed to be put into header and this code is highly possible to leak your traffic: <script type="text/javascript" src="https://z.moatads.com/addthismoatframe568911941483/moatframe.js"></script> We are planning to remove AddThis component from KVS themes and we recommend you considering doing the same for your projects. You can easily switch off AddThis in Website UI -> Theme settings: Quote Link to comment Share on other sites More sharing options...
xvids Posted May 28, 2020 Share Posted May 28, 2020 Any Replacements? Quote Link to comment Share on other sites More sharing options...
Tech Support Posted May 28, 2020 Author Share Posted May 28, 2020 Not yet. Many our customers said that they have already removed this feature from their sites some time ago. It looks like all these scripts produce additional speed issues without real value. Quote Link to comment Share on other sites More sharing options...
davex Posted May 28, 2020 Share Posted May 28, 2020 It is very rare for addthis to advertise, with all these years I have never seen this. yes it is true that with the addthis catches the speed is sometimes somewhat slower. Quote Link to comment Share on other sites More sharing options...
davex Posted May 28, 2020 Share Posted May 28, 2020 I believe that the owner of the website that had that code has been hacked into their website. addthis their codes are never like this: z.moatads.com It is an advertising company like any other. <script type="text/javascript" src="//s7.addthis.com/js/300/addthis_widget.js#pubid=ra-*********************"></script> Quote Link to comment Share on other sites More sharing options...
Tech Support Posted May 29, 2020 Author Share Posted May 29, 2020 No, it is definitely addthis. Just google for addthis + moatads and you will find some similar issues reported by others: https://wordpress.org/support/topic/addthis-and-moatads-com/ It is not clear if this is legit or not, but adding 3rd-party scripts to the page is definitely the reason to stop using addthis. 1 Quote Link to comment Share on other sites More sharing options...
Mark.snc Posted May 29, 2020 Share Posted May 29, 2020 that's right, we got 3 chrome flags about malicious redirects, after some investigations, I noticed one code like the same you mentioned in footer, how did they get into our footer ? Quote Link to comment Share on other sites More sharing options...
davex Posted May 29, 2020 Share Posted May 29, 2020 No, it is definitely addthis. Just google for addthis + moatads and you will find some similar issues reported by others: https://wordpress.org/support/topic/addthis-and-moatads-com/ It is not clear if this is legit or not, but adding 3rd-party scripts to the page is definitely the reason to stop using addthis. ups, thanks for the info again. Quote Link to comment Share on other sites More sharing options...
Tech Support Posted May 30, 2020 Author Share Posted May 30, 2020 that's right, we got 3 chrome flags about malicious redirects, after some investigations, I noticed one code like the same you mentioned in footer, how did they get into our footer ? This code is inserted on the fly by addthis component. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.