“Thousands of hacked websites have become unwitting participants in an advanced scheme that uses fake update notifications to install banking malware and remote access trojans on visitors’ computers, a computer researcher said Tuesda,” Dan Goodin reports for Ars Technica. “The campaign, which has been running for at least four months, is able to compromise websites running a variety of content management systems, including WordPress, Joomla, and SquareSpace.”
“That’s according to a blog post by Jérôme Segura, lead malware intelligence analyst at Malwarebytes,” Goodin reports. “The hackers, he wrote, cause the sites to display authentic-appearing messages to a narrowly targeted number of visitors that, depending on the browsers they’re using, instruct them to install updates for Firefox, Chrome, or Flash.”
Read more in the full article here.
MacDailyNews Note: Based on the Malwarebytes screenshots, this seems to affect only Windows at this time, we think. Neither article stipulates which platforms are affected.