xbiz world
xbiz premiere

Report: Massive JavaScript Injection Attack Underway

LOS ANGELES – Computer security specialists Websense Security Labs have released details concerning a massive, malicious JavaScript injection attack that has compromised thousands of domains this month alone.

The incident follows a previous series of similar attacks last summer that also relied on JavaScript injection and used a similar toolkit to execute the attacks.

The total number of infected websites is estimated to be in the hundreds of thousands.

The infections are passed when a surfer visits a compromised website, whereupon the malicious code loads a file named 1.js which redirects visitors to a webpage named 1.htm which then launches eight different attacks on Microsoft applications, such as Internet Explorer installations that have not been patched against VML exploit MS07-004.

The malicious code caused further concern by referencing files named McAfee.htm and Yahoo.php, but those files seem to be no longer active.

The United Nations website, as well as those of the UK and Chinese governments has been successfully compromised by the current attackers, the Websense report claims, which also cites previous successful attacks on US-based news websites, an Israeli e-commerce portal, and many travel sites.

The attackers are defying attempts to thwart their assaults by switching the domains from which the attacks are launched.

Further concerns have been reported by SecuriTeam’s Tim Brown who claims that these attacks do not require JavaScript or the <script> tag to perform a successful injection and that once the attack succeeds, AJAX offers other avenues of attack that would succeed even on systems that had JavaScript disabled.

Related:  

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

AEBN Reveals Ariel Demure as Top Trans Star for Q4 of 2024

AEBN has named its top trans stars for the fourth quarter of 2024, with Ariel Demure landing atop the leaderboard.

WOWify.AI Joins ASACP as Corporate Sponsor

WOWify.AI has signed on as the latest corporate sponsor for the Association of Sites Advocating Child Protection (ASACP).

Segpay Adds Gateway Payment Solution

Segpay has added the Gateway option to its direct payments solutions.

Cherry Kiss, Derek Kage Cap AEBN's Top Stars for 4th Quarter of 2024

AEBN has revealed its most popular performers in gay and straight theaters for the fourth quarter of 2024.

A Golden Night in Hollywood: 2025 XMAs Shine on Adult Entertainment's Best

To paraphrase the unofficial U.S. Postal Service motto: Neither rain nor cold nor the chaos of natural disasters can stop members of the adult entertainment community from the completion of their appointed duty every January: to honor the artistic and commercial achievements of their peers.

What Changes in DC Could Mean for the Adult Industry

On November 5, 2024, American voters were called to the polls. The results of that election revealed an unquestionably uncomfortable truth for everyone, regardless of party or ideology: the “united” part of United States does not appear to be holding strong.

Byborg Acquires Gamma Entertainment

Luxembourg-based Byborg Enterprises SA has acquired 100% of Canadian adult conglomerate Gamma Entertainment.

Adult Creative Debuts 'Pornful' Website Management Platform

Web design and marketing firm Adult Creative has launched its new Pornful website management platform.

2025 XMA Winners Announced

Winners of the 2025 XMAs were revealed Sunday night during a ceremony hosted by Vanna Bardot and Ryan Reid at the world-famous Hollywood Palladium.

X3 Expo Day 2 Looks at the Industry's Past, and Ahead to Its Future

A gorgeous day in LA saw a massive procession making its way along Sunset Blvd., as hundreds of excited fans headed to the historic Hollywood Palladium for a rendezvous with the galaxy of A-list adult stars awaiting them on Day 2 of the 2025 X3 Expo.

Show More