Cybersecurity researchers have identified a significant campaign involving the injection of malicious JSFireTruck obfuscation into legitimate websites. This technique, which obscures the malicious code, has been detected across over 269,552 web pages. When users access these compromised sites via search engines, the obfuscated code can redirect them to harmful URLs, facilitating malware delivery and other malicious activities. The campaign, which peaked with over 50,000 infected pages in one day, indicates a severe threat due to its scale and stealth, as it targets legitimate sites to exploit users.
Multiple websites have been identified with injected malicious JavaScript that uses JSFireTruck obfuscation, which is composed primarily of the symbols [, ], +, $, {, and }.
The campaign's scale and stealth pose a significant threat. The widespread nature of these infections suggests a coordinated effort to compromise legitimate websites as attack vectors for further malicious activities.
Collection
[
|
...
]