Geek.com Spreading Malwares!

ZScaler informed about an attack on Geek.com a website that has been very popular for online technology resources since 1996. Hackers managed to redirects users to malicious sites and tried to install malicious software on all visitors machine.

On Sunday zScaler reported that the main page of the site including the homepage and the About Us section, containing an invisible iframe, JavaScript downloaded from sites contaminated with a homemade set of exploits. Next, the malicious code is trying to take advantage of vulnerabilities on the end user’s machine.

According to zScaler:

If you look at the screenshot , you will notice that they feature the latest articles on the home page. The latest topic or article currently discussed is “Call of Duty: Modern Warfare 3 details leaked”. As this is first article is highlighted and “Call of Duty” is a very popular game, one can assume that many people have fallen victim to this attack. It is in the article itself where the malicious Iframe has been injected.


The malicious Iframe redirects victims to a malicious website hosting an exploit kit. Once you visit, heavily obfuscated JavaScript is returned which will target various known vulnerabilities. Here is what the exploit looks like:


Unfortunately on a daily bases there are hundreds of attacks conducted on web pages like the one demonstrated. Many legitimate web resources  are subject to cracking due to lack of experience in web application programming, that are often used by cybercriminals to spread their malicious software. Attackers are always looking for popular sites and news portals and use them as platforms for their attacks. You always have to remember safe sites do not exist.

make sure you subscribe to my RSS feed!

Share
  • Pingback: A. Vanderslyke

  • Pingback: Wiredsec

  • Pingback: Aladin

  • Pingback: ArabSec

  • Pingback: Aladin

  • Pingback: John Taylor

  • Pingback: Ben Betler

  • Pingback: TOM

  • Pingback: BugHunter

  • Pingback: Mourad ben lakhoua

  • Pingback: Mourad Ben Lakhoua

  • Pingback: Timothy J. Nolan

  • Pingback: ArabSec

  • Pingback: SecureArabia

  • Pingback: SecureTechnology

  • Pingback: BugHunter

  • Pingback: dum0k

  • Pingback: Cyber Informer

  • Pingback: Win Security

  • Pingback: PA House Dem Caucus

  • Pingback: Wiredsec

  • Pingback: powertuxos