Cybercriminals have set up a number of fake jQuery websites and they’re using them to distribute pieces of malware. Experts from Sucuri Malware Labs have identified at least three such sites.
The jquerys.org, jquery-framework.com and jqueryc.com domains are the ones in question.
According to researchers, references to jqueryc.com have been found in the header of the index.php file of numerous sites.
The crooks are using the following line of code to redirect the visitors of legitimate sites to jqueryc.com, from where they’re further redirected to other spammy domains:
window.top.location.href = "httx://www.jqueryc.com"
Users are advised to steer clear of such sites. The legitimate jQuery sites are jquery.com and jquery.org. Other variants, even if they look legitimate, are likely fake.