New script outstrips all other drive-by download risks
Major malicious domo
Regcast training : Hyper-V 3.0, VM high availability and disaster recovery
A newly-created malicious script has become the source of almost half the drive-by download attacks tracked by one security firm.
JSRedir-R accounts for around 43 per cent of all malicious infections found on websites over the last week, according to a study by net security firm Sophos, published on Thursday. The malware crops up with almost six times the frequency of its nearest rival, iFrame-F (which is recorded in seven per cent of attacks).
The JSRedir-R script is typically found on legitimate websites, hidden behind obfuscated JavaScript, and used to exploit browser vulnerabilities to download malware onto the Windows PCs of visiting surfers via third-party websites under the control of hackers. The malicious script has also cropped up on the 2 Girls 1 Cup scat video viral website.
A chart from Sophos on the relative frequency of different web-based attacks can be found here. More pointers on how the JSRedir-R attack works, and how webmasters might guard against it, can be found here. ®
COMMENTS
Eric Arthur Blair suggests...
"god only knows whats going to be next."
Is it 1 Boot (stamping on) 1 Face (forever)?
@AC 15.01
>I thought that was the most disgusting thing I'd ever seen on the internet, until I saw 1 man 1 jar.<
Yeah, thanks for that. You owe me a new computer. This one smells real bad now
2g1c?
'2 girls 1 cup' < '1 guy 1 jar' < '1 guy 1 screwdriver'
god only knows whats going to be next.
IT infrastructure monitoring strategies
Agentless Backup is Not a Myth
Top 10 SIEM implementer’s checklist
Steps to Take Before Choosing a Business Continuity Partner
Requirements Checklist for Choosing a Cloud Backup and Recovery Service Provider
