In a post last week regarding the new ‘hack’ against Mega, MegaPWN, we talked about the implementation of a GreaseMonkey script to avoid being a victim of a hack on Mega servers. The script would mainly look for changes in the “crypto-magic” performing JavaScripts loaded from Mega. I decided to give it a try and […]
Earlier today the main website of NBC and some of their show websites (such as www.jaylenosgarage.com) were compromised to serve malicious content to users. The malicious content was inserted as a one-line iframe tag on one of the JavaScripts that gets loaded every time a user visits the page: This one line of code forces […]
This week we have detected another interesting attack vector. This time cybercriminals are using an interesting technique for hiding malicious Javascripts and employ implicit iFrame injection. At this moment we are tracking hundreds of infected legitimate web sites in the Russian internet segment using this technique of infection. Let’s analyze this attack method step by […]
Latest Comments