i know shop had issues before, but now even going to the main pimax page will throw up a severe risk intrusion attempt from norton. dont even go near it until pimax fixes this shit and releases a statement on it , and if you hand your payment details directly to pimax at this point you are an idiot.
I think it would be wise to know the problem is outside just one report? I ran two external URL scanners on it and both said it was ok but I did not go there directly to test it as this is a work machine,
I think it would be great to confirm it by more than one report. Send in the sacrifice. XD Of course if you treat it as being under same umbrella as the redirect attacks that have been happening for past few weeks then there have been multiple reports. i would also guess its literally the same thing, its just starting to be served on main page now.
Just checked the site again and it is still infected. I checked last night and notified pimax and helio.
The site is infected with malware.generic_jsobfuscator?1.2 in multiple locations mainly in .Js files.
Also the site has been blacklisted with 9 providers, which won’t be removed until the malware is removed.
I do not recommend visiting the site, or using the login button or visiting the PiPlay section of that site until it’s clean, as the malware is running on the Javascript on those pages and buttons also.
Yep, you will need to clear your browser cache for pimax site as those js files are currently in your local files.
This is assuming that pimax simply uploaded the uninfected files, but forgot to mark them as a newer version hence your browser would reuse the previous, but infected files.