Sucuri Warns of Fake jQuery Sites Distributing Malware

Cybercriminals have set up at least three malicious websites

  Beware of fake jQuery sites
Cybercriminals have set up a number of fake jQuery websites and they’re using them to distribute pieces of malware. Experts from Sucuri Malware Labs have identified at least three such sites.

Cybercriminals have set up a number of fake jQuery websites and they’re using them to distribute pieces of malware. Experts from Sucuri Malware Labs have identified at least three such sites.

The jquerys.org, jquery-framework.com and jqueryc.com domains are the ones in question.

According to researchers, references to jqueryc.com have been found in the header of the index.php file of numerous sites.

The crooks are using the following line of code to redirect the visitors of legitimate sites to jqueryc.com, from where they’re further redirected to other spammy domains:
window.top.location.href = "httx://www.jqueryc.com"

In some instances, experts have found sites with this JavaScript file being included in the header: http://www.jqueryc.com/jquery-1.6.3.min.js

Users are advised to steer clear of such sites. The legitimate jQuery sites are jquery.com and jquery.org. Other variants, even if they look legitimate, are likely fake.

Comments