The website for the restaurant that recently refused to host White House Press Secretary Sarah Huckabee Sanders was found unknowingly hosting hidden code linking to ads for Viagra and other pharmaceuticals.
In a June 27 blog post, Malwarebytes reported its discovery that The Red Hen, a farm-to-table fine dining restaurant in Lexington, Virg., may have been the victim of Search Engine Optimization poisoning, or spamdexing.
Blog post author and Lead Malware Intelligence Analyst Christopher Boyd notes that the WordPress site's HTML code appears to have been injected with spam text that gives the advertised drug sites an SEO boost. Such a tactic would be especially effective in this case, considering that the controversial restaurant's site traffic likely increased dramatically since June 23, when Sanders tweeted that the establishment declined to serve her, in light of her politics.
“Injecting redirection code to Viagra spam portals on a site currently at the heart of U.S.-centric news is a dream come true for hackers, and they'll no doubt be hoping to capitalize on an inevitable traffic boost to the restaurant's website,” said Boyd in separate comments printed in a Newsweek article.
Additionally, as of Thursday, site visitors clicking on certain links on the Red Hen website were redirected to pages featuring cars and Japanese text.
In his blog post, Boyd speculates that scammers could have possibly injected the code by targeting a WordPress exploit, gaining access to default admin credentials, or successfully executing a phishing scheme.