Researchers have discovered a massive iframe injection campaign that has infected more than 90,000 Web pages.
Researchers at Armorize said the injected scripts redirect users to malicious Web domains that is launching attacks targeting known vulnerabilities in Java, Adobe’s PDF, Microsoft’s Internet Explorer and other common platforms, according to the report by Armorize experts Wayne Huang, Chris Hsiao and NightCola Lin. The campaign is targeting online commerce sites, the researchers found.
For a detailed summary of the attack timeline and some interesting screenshots, you can find the Armorize report in its entirety here.