ruchernchong
commented
6 years ago This seemed like a filter issue
Open tweitzel opened 6 years ago
ruchernchong
commented
6 years ago This seemed like a filter issue
tweitzel
commented
6 years ago With the same filter settings, it is blocked in chrome's ublock origin, but not this safari port.
volcbs
commented
6 years ago Yeah, I already tried to block the 1st party scripts and 3rd party elements, and the miner is still there.
MacOS: 10.12.3 Safari: 11.0.3 uBlock Origin: 1.15.4 Filter: All existed filters except the region filters. Also AAK filter.
Describe the issue
The charming fellow who runs www.danielcolomb.com has either been hacked terribly to the point where someone can inject the coinhive miner straight into his wordpress template, or he has decided to host the coinhive miner himself. Either way, it is not being blocked by ublock origin for safari, but is being blocked in the chrome version.
One or more specific URLs where the issue occurs
http://www.danielcolomb.com
Screenshot in which the issue can be seen
Not a visual issue, but this snippet stuck at the top of the html seems to execute the mining script.
Steps for anyone to reproduce the issue
Take the attached html file, put it anywhere, open it in safari with ublock origin running, view the debugger and the system load.
Your settings
Your filter lists
uBlock filters4,168 used out of 4,202 uBlock filters – Badware risks8 used out of 8 uBlock filters – Privacy62 used out of 65 uBlock filters – Resource abuse206 used out of 208 uBlock filters – Unbreak296 used out of 300 EasyList80,219 used out of 80,449 EasyPrivacy14,203 used out of 14,359 Malware Domain List1,130 used out of 1,146 Malware domains16,668 used out of 16,668
Your custom filters (if any)
www.metalinjection.net##.cEMfcKtj-1-
coinhive.html.zip