Websense® Security Labs has received reports of new malicious Web sites, designed to install Trojan horse and Password Stealing malicious code. The Web sites are hosted in China and attempt to exploit several Microsoft® vulnerabilities to download and install a Trojan downloader without end-user interaction.
Among the sites are a popular Chinese book store hosted on Myrice. All sites appear to have been compromised.
There are three IFRAMEs that are loaded:
Article by Websense
//Mod edit to fix the BB Code
Edited by KoanYorel, 15 March 2007 - 05:49 PM.