Websense: Update on yl18 dot net mass infection
November 2007 by Websense
Websense® Security Labs™’s ThreatSeeker™ technology has identified more than 350 sites to date containing malicious code designed to infect the site’s visitors through the use of an external JavaScript file. This is a follow-up on our previous alert of a mass infection involving MSNBC’s Turkish site. Notable sites discovered include the Swedish parliament’s web site and an Australian financial services web site (FICS).
At time of writing, the sites in the screenshots below are still infected and we do not recommend visiting them without adequate protection. Vulnerable visitors will have password stealing code installed and executed on their desktops without their consent.