Malware purveyors are exploiting web vulnerabilities in appleinsider.com,
lawyer.com, news.com.au and a dozen other sites to foist rogue anti-virus on
unsuspecting netizens.

The ongoing attacks are notable because they use exploits based on XSS, or
cross-site scripting, to hide malware links inside the URLs of trusted sites.
That’s something application security expert Mike Geide doesn’t see often. As a
result, people who expect to visit sites they know and trust are connected to a
page that tries to trick them into thinking their computer is infected.

"What’s interesting … is the fact that it’s embedding iframes to redirect
people," Geide, who is a senior security researcher at Zscaler, told The
Register. "Typically, cross-site scripting is just that — it embeds script tags
so it will embed javascript to run."

Теги:

Оставить мнение

Check Also

Пространство для эксплуатации. Как работает новая RCE-уязвимость в Apache Struts 2

Во фреймворке Apache Struts 2, виновном в утечке данных у Equifax, нашли очередную дыру. О…