Security researchers are warning that some 30,000 WordPress websites, 85% of them based in the US, have been compromised by a mass-injection hijack attack which sees visitors to any of more than 200,000 individual pages redirected to a Trojan infected rogue AV scam.
The senior security researcher with Websense Labs, Elad Sharf, admits that while rogue AV is old hat these days it's obviously still a money-making exercise and one that turns enough profit for the bad guys for them to keep plodding away at it. "With such a high number of compromised web pages and websites in this on-going campaign, it's evident these scams are still working. Websense Security Labs has been following this mass injection campaign for months and we've seen over 200k web pages and close to 30k unique websites compromised" Sharf says, adding "vulnerable websites are a rich source of opportunity for cybercriminals".
Posted by thexyz (#3) 440 days ago (http://www.daniweb.com)
Who Voted for this Story
Theyxz.in democratizing digital media, discover, discuss and share the links you wish to index and Subscribe to Thexyz.in Tech Industry News by Email