iframe

(get it in RSS or Atom)

Seagate's blog pushes malware on unsuspecting visitors via rogue Apache modules

by Paul Baccas on March 14, 2013 | 2 Comments
Seagate's blog pushes malware on unsuspecting visitors via rogue Apache modules

SophosLabs has been tracking an infection of Mal/Iframe-AL on Seagate's blog since late February.

Are you taking enough care of your company's websites?

Rogue Apache modules pushing iFrame injections which drive traffic to Blackhole exploit kit

by Fraser Howard on March 5, 2013 | 7 Comments
Rogue Apache modules pushing iFrame injections which drive traffic to Blackhole exploit kit

SophosLabs has seen huge volumes of legitimate sites being compromised with malicious redirects in recent weeks.

Fraser Howard explains what's going on, and how the compromised web servers are almost exclusively running Apache.

Malware injected into legitimate JavaScript code on legitimate websites

by Paul Baccas on February 13, 2013 | 18 Comments
Malware injected into legitimate JavaScript code on legitimate websites

SophosLabs has observed a trend of hackers inserting their malicious code into legitimate JavaScript hosted on legitimate compromised websites.

Learn more about what our experts have seen, and ensure that you have protection in place.

New IE zero day exploit circulating, used to install Poison Ivy

by Paul Roberts on September 17, 2012 | 17 Comments
New IE zero day exploit circulating, used to install Poison Ivy

The gang behind that recent Java zero day attacks apparently hasn't packed up for the season. A researcher examining one of the servers used to launch attacks on vulnerable Java installations said he found a new zero day exploit for Microsoft's Internet Explorer web browser.

Invisible iFrame drive-by malware attacks explained [VIDEO]

by Graham Cluley on August 16, 2012 | 6 Comments
Invisible iFrame drive-by malware attacks explained [VIDEO]

iFrames and script tags are being used by malicious hackers to serve up drive-by internet attacks, silently and invisibly.

Watch our video to find out more.

Hide and seek with website injections

by Fraser Howard on November 11, 2011 | Leave a comment
Troj/JSRedir-DY code snippet

Step into the shoes of a site administrators attempting to check if their sites have been hacked or not, by taking a look at a couple of recent attacks against websites.

TWiT.tv - malware infects Leo Laporte's website

by Graham Cluley on September 15, 2011 | 22 Comments
twit-thumb

The website run by internet celebrity Leo Laporte, TWiT.tv, has been hit by a malware infection intended to infect visiting computers.

Double trouble - spam and malware payloads

by SophosLabs on June 18, 2010 | Leave a comment
Targeted Trident cyber-attack against defence company

Don't you hate spam? It's a nuisance, but not anything you really need to worry about, is it? I mean, it's not like you ran an executable, you just found yourself somewhere trying to sell you Viagra, no harm done, Read more…