Sweetcapcha hacked and causing malicious popups

Hi 32hjfdsfaw43ewedw,

Please send us your details(relevant link + sweetCaptcha credentials) to our support and we will investigate your issue:
[email protected]

Thank you for supporting our sweet community,
Best,
Lara
sweetCaptcha Support Team

I can confirm that since yesterday I faced the same issue on two WP blogs, that served malware ads, exploits and ransomware pop-unders. All issues ended by deleting Sweet Captcha.

Same issue here. Any links clicked on my site cause the user to be redirected to a variety of garbage sites.

They weren’t hacked. it is their code they installed on purpose. They are running ads for the network RevenueHits.com – I just reported their actions there. Deactivate their plugin immediately.

I am also having similar issues with popups on my site all of a sudden and I have SweetCaptcha installed. I am deactivating now.

Hi All,
(ben.r, tsetsaf, DeanMurray, acroplex,
Thank you for helping us and using sweetCaptcha!

sweetCaptcha is running on a very large scale of websites around the world,
we are handling the latest technical issues by solving it and running our
tools on each of those websites.
(this will take some time, but we are on it!)

To really solve this issue, we can’t support you here, as we need to get from you some private technical details, so please do the following:
1. if you have any issues with sweetCaptcha, please send us a mail to [email protected]
2. please provide a link to your site(please don’t forget this detail), if you have several sites, please send a list.
3. please provide your sweetCaptcha credentials(its under you site management in your sweetCaptcha account)

Thank you,
Lara
sweetCaptcha Support Team

Same issue. Deactivating Sweet Captcha fixed the hack.
Sent support an email with technical details of what I found.

Be carefull. This plugin is a malware. Your website will opening pop-ups ads after installation !

Beware! https://blog.sucuri.net/2015/06/sweetcaptcha-service-used-to-distribute-adware.html

It appears that sweetcapcha is intentionally distributing this malware as a revenue model.

https://blog.sucuri.net/2015/06/sweetcaptcha-service-used-to-distribute-adware.html

https://elliott.org/from-the-trenches/help-us-kill-this-malware-before-it-kills-us/

https://vladtepesblog.com/2015/06/09/browser-hijack/comment-page-1/

https://scoobysworkshop.com/2015/06/09/malware-popup-ads-on-your-wordpress-website-delete-sweetcapcha-plugin/

Whether it was intentional or not, this is not acceptable. Do not use this plugin. It cost my company around 2 weeks of revenue.

@sweet Captcha
Thank you for your response, but at this point the evidence that this was an intentional ploy means that I won’t be re-installing your plugin.

Here’s more detail on the what the plugin is doing. If this is intentional then Sweet Captcha should be ashamed of themselves…

https://blog.sucuri.net/2015/06/sweetcaptcha-service-used-to-distribute-adware.html

Also the plugin is no longer on WordPress!

Yes, confirmed today, while cleaning up a hacked website, that this SweetCAPTCHA plugin was responsible for malicious popups and redirects. Summarily executed plugin.
Not cool.

Thank for the notice. I just deleted sweetcaptcha and the ad-redirects seem to be gone.

The problem now is that my social share buttons which were supposed to be at the side of each post are now way at the bottom of each page. Also, I used to have a greet box at the beginning of each post which is now no longer showing. Any idea how I can fix this?

Your help is much appreciated.