Sunday when I visited LiveLeak, NoScript pitched a fit. Instead of giving me the usual warnings at the bottom, I got a bunch of XSS warnings at the top. I read the console log and it looks like porn spammers from Holland hacked the site. The ads were in Dutch, but they had logged my IP correctly so the city was Fort Lauderdale. They looked like AdultFriendFinder ads.
The phrase in the ad header was "Maak contact met opwindende vrouwen" in Fort Lauderdale. If you Google that phrase, you get sponsored Google ads on the right for Russian women, milfs and cheating wives. The sites listed in the search results have vulgar words in their names.
As of today, LiveLeak is back to normal. Our main Mac IT guy at work said someone is practicing for a larger attack. I tried adding extra filters to NoScript, and reloading the page, but the page scripts kept changing the top domain and I couldn't block it completely.
