14 DAY TRIAL // This is something new and as far as I can see, it is pretty dangerous for all of us. It seems like two websites were infected with some sort of infections which can cause pretty serious damage, if combined. The malicious code's first goal is stealing users' eBay login credentials but there's no statistic concerning some potential affected visitors. PC World reported that the matter was first reported by the folks at Aladdin Knowledge Systems who discovered the two infected pages and contacted their owners. The two website administrators could not be reached so the threat may be still there. Although I have the URLs of the two pages, I'm not going to mention them, just to keep you on the safe side and avoid potential problems.
But this new type of exploitation is pretty interesting as each page contains a malicious file able to work with the other one for a successful exploitation. "There are a chain of sites that work together. One Web page uses a trick with JavaScript to open a size-zero window, which takes content from a third-party site."The last time we saw this kind of attack, in September, it was from an Israeli labor organization site," Ofer Elzam, Aladdin Knowledge Systems' director of product management, said according to PC World.
In the recent few days, there were numerous reports concerning hacked websites which were then equipped with dangerous files aiming to steal users' information and to infect their computer with all sorts of viruses.
But this new type of attack is at least interesting and more efficient talking from an attacker's point of view because it may be able to trick the antivirus solutions installed on the systems. However, it's still recommended to install security tools and other applications able to defend your computer from the reported threats.