Thousands of government websites have been compromised by scammers who are exploiting security vulnerabilities to upload fraudulent advertisements for leaked OnlyFans content. The attackers are using these trusted government domains to host malicious links, likely attempting to steal credentials, distribute malware, or conduct other fraud schemes by leveraging the credibility of official government web properties.
The breach campaign appears widespread, affecting government sites that may lack adequate security monitoring or patch management. Attackers are specifically targeting these domains because they carry inherent trust with users and often rank well in search engines, making them valuable real estate for scam operations. The compromised pages typically advertise access to stolen adult content, a common lure used in social engineering attacks.
OnlyFans content creators have become unlikely allies in identifying these breaches by filing Digital Millennium Copyright Act (DMCA) takedown requests against the infringing content. When creators discover their copyrighted material being advertised on compromised government sites, they submit formal complaints to search engines and hosting providers. These complaints create a paper trail that alerts both the platforms and potentially the affected government agencies to the security breach.
The incident highlights significant gaps in government website security and monitoring capabilities. Many agencies appear unaware their sites have been compromised until external parties like content creators or security researchers flag the malicious content. This reactive approach leaves government domains vulnerable to exploitation for extended periods, during which time visitors may be exposed to scams, phishing attempts, or malware distribution.
Government agencies should immediately audit their web properties for unauthorized content and implement continuous security monitoring. Organizations should ensure all content management systems and web applications are patched against known vulnerabilities, deploy web application firewalls, and establish processes to respond quickly to external breach notifications. Security teams should also monitor for unexpected DMCA complaints against their domains, as these may indicate a compromise that bypassed traditional detection methods.
Source: https://www.wired.com/story/onlyfans-creators-dmca-hacked-government-websites/


