CBS.com, one of the highest ranking sites on the web according to Quantcast (3.9 million visitors over 4 months) and Alexa (which ranked it 964 overall), was compromised by hackers apparently operating from Russia. The security firm Finjan discovered the breach and alerted CBS.
From Finjan:
The cybercriminals added a malicious obfuscated script to the infected page. The injected script injects a malicious IFrame to the page.
The injected IFrame automatically loads another malicious script from a remote server controlled by criminals in Russia, causing a possible installation of malware on the unsuspecting client machine. The remote Russian server is already down.
One can only wonder how many folks got nailed with this exploit as no doubt folks are checking the site as they enjoy their Thanksgiving weekend in the US.
