Portal Home > Knowledgebase > Articles Database > Malware pretending to be JQuery


Malware pretending to be JQuery




Posted by nonmal, 01-14-2011, 04:56 PM
Hello all, Forum newbie, so in case I violate any guidelines, please let me know. I did read through them though. Just wanted to share and observation: During the last few months web based malware has been evolving rapidly. Nothing new, but, it seems that malware is now aggressively going after pretending to be legitimate code used by websites. Fake AVs have been around for eons now, but web based malware has only recently started going down that familiar path. Consider the case where malicious scripts injected into benign sites are now being dressed up to look and feel like a legitimate JQuery script. In fact JQuery is the most "targeted" code base for cloaking malware on web sites. Of course, I am referring to malware that has been injected onto websites without any approval. Deliberately-Malicious websites, most of the times don't bother with cloaking their malware. <> Safe Surfing everyone. Last edited by bear; 01-14-2011 at 05:11 PM.

Posted by nonmal, 01-14-2011, 05:55 PM
Apologies for posting the link to the blog. A sample of such a malware is presented below. (The malware has been snipped) This certain code was mined from a page on http://www.acc4arab.com/newsite/[scrubbed].shtml

Posted by AH-Keith, 01-14-2011, 06:08 PM
This has been around for quite some time, there was a whole deal about it for people using WordPress. It had a lot of exploits that allowed people to inject malicious code.



Was this answer helpful?

Add to Favourites Add to Favourites    Print this Article Print this Article

Also Read
compile apache (Views: 568)
shoutcast reseller (Views: 572)
rootkithunter warnings (Views: 601)