This article provides a good illustration of a drive-by Trojan attack. Somehow, a bunch of web sites in Italy have become infected with the attack. Visitors to those sites are getting infected automatically if they have a browser that is not up-to-date. Once infected, the vistors are redirected to other sites where they are further infected. By the end of it, an unknowing visitor is infected with a proxy server that allows a remote bad guy to access the Internet using the victim’s computer (great for sending spam), and a key logger than can be used to record usernames and passwords. Nasty stuff.
TrendLabs | Malware Blog – by Trend Micro
Since early Saturday morning (June 16, 2007), Trend Micro has been receiving several reports of a new batch of hacked Italian Web sites that trigger a series of malware downloads once a user visits them.
Technorati Tags: security, torjan, virus, iframe, browser, javascript