The word of the day is drive-by

Drive-by: as in drive-by download the act of malware being installed on a computer while browsing hacked sites.

Earlier this month we saw reports of a dictionary publishers website (Cambridge University Press) having being compromised with Troj/Badsrc-A.


We were alerted to this compromise by feedback from the WS1000 web appliance.


Cambridge University Press are not the first high profile site to have been compromised (see 1, 2). We contacted the website owners and the site now appears to be clean.


Let us hope that the security holes that allowed this website to be hacked have now been closed.