[b] How criminals make money from compromised websites Posted by Maxim Weinstein [/b]http://blog.stopbadware.org/2009/07/30/how-criminals-make-money-from-compromised-websitesA couple weeks ago, I wrote about a trend of websites being compromised because the webmaster’s computer had a Trojan that was stealing FTP credentials for the site. The folks at Finjan recently released a report detailing the operations of a criminal enterprise, Golden Cash, that uses this approach as an integral part of its operations. From the report (emphasis added):
How does Golden Cash operate?
- A potential victim visits a legitimate compromised website.
- The compromised website contains a malicious Iframe, causing the victim‟s browser to pull an exploit code from the attacker website that is armed with the exploit toolkit.
Thanks for sharing. It is a dangerous [virtual] world. :-\