Massive iFrame Attack Hits More than 90,000 Pages

Researchers have discovered a massive iframe injection campaign that has infected more than 90,000 Web pages.

Researchers have discovered a massive iframe injection campaign that has infected more than 90,000 Web pages.

Researchers at Armorize said the injected scripts redirect users to malicious Web domains that is launching attacks targeting known vulnerabilities in Java, Adobe’s PDF, Microsoft’s Internet Explorer and other common platforms, according to the report by Armorize experts Wayne Huang, Chris Hsiao and NightCola Lin. The campaign is targeting online commerce sites, the researchers found.

For a detailed summary of the attack timeline and some interesting screenshots, you can find the Armorize report in its entirety here.

Suggested articles

Discussion

  • Jan on

    Targetting e-commerce sites? Yawn. That's oscommerce. We've been having a hack a day for a long time. It will never be fixed. I guess someone decided to cash in on their hacks. Password protect the admin directory for some semblance of security.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.