Have a look...
Malicious site: MSNBC Sports compromised
1- http://www.websense.com/securitylabs...hp?AlertID=848
March 18, 2008
Spammers using Google ads to redirect users to Malware:
2- http://preview.tinyurl.com/2opnkh
March 17, 2008 (McAfee Avert Labs)
IFRAME redirects...
3- http://www.networkworld.com/news/200...ve-iframe.html
March 16, 2008 - "...Danchev* listed more than 20 sites that together account for more than 401,000 IFRAME-injected pages... he had identified more than 100 bogus .info domains that were acting as the second-stage redirectors. Trace it back far enough, and the path leads to the Russian Business Network (RBN)..."
* http://ddanchev.blogspot.com/2008/03...-injected.html
March 12, 2008
Shadowserver report: I/P in China serving malicious javascript...
4- http://www.shadowserver.org/wiki/pmw....20080313#toc1
March 13, 2008 - ...in conjunction/coordination with:
4A- http://www.us-cert.gov/current/#sear...ection_attacks
updated March 14, 2008
4B- http://www.us-cert.gov/current/#webs...xploitation_of
updated March 14, 2008
(Multiple sites) ...getting RBN-ed
5- http://ddanchev.blogspot.com/2008/03...ng-rbn-ed.html
March 10, 2008 - "...The attack is still ongoing, this time successfully injecting a multitude of new domains into Wired Magazine, and History.com's search engines, which are again caching anything submitted, particularly not validated input to have the malicious parties in the face of the RBN introducing a new malware..."
Example: http://ca.com/us/securityadvisor/pes...x?id=453119651
More to come...