How criminals make money from compromised websites

[b] How criminals make money from compromised websites Posted by Maxim Weinstein [/b]

A couple weeks ago, I wrote about a trend of websites being compromised because the webmaster’s computer had a Trojan that was stealing FTP credentials for the site. The folks at Finjan recently released a report detailing the operations of a criminal enterprise, Golden Cash, that uses this approach as an integral part of its operations. From the report (emphasis added):

How does Golden Cash operate?

  1. A potential victim visits a legitimate compromised website.
  2. The compromised website contains a malicious Iframe, causing the victim‟s browser to pull an exploit code from the attacker website that is armed with the exploit toolkit.
http://blog.stopbadware.org/2009/07/30/how-criminals-make-money-from-compromised-websites

Thanks for sharing. :slight_smile: It is a dangerous [virtual] world. :-\