I’m seeing a rise in trackback spam coming from university domains like these posts http://www.csrd.uiuc.edu/HyperNews/get.cgi/PROMIS/10.html at Center of Supercomputing Research and Development at University of Illinois.
It seems that the spammers are just using these HyperNews systems for redirects by adding an old JavaScript trick to their post. The HyperNews systems that I’ve seen getting hit by this appear to be old, abandoned setups that are not maintained, and don’t filter JavaScript and other nasty tricks out of their posts.
I saw a similar redirect from the HyperNews install at Stanford University last week, reported it, and they’ve removed the redirecting post. I’ll keep reporting them and adding filters but the spammers have more time than I do.
