The Italian Job
According to security firms Trend Micro Inc. and Websense Inc., a widespread attack began late last week and now more than 10,000 Web sites have been compromised. While there have been numerous attaches around the Web of late, 80 percent of the current infections are on Italian Web sites.
The Infected Web sites contain a short piece of HTML "iFrame" code that redirects the victim's Web browser to a server that attempts to infect the victim's computer using a tool called "MPack" - which installs a keylogger and a Trojan downloader program on compromised PCs so that the attackers can monitor the victim's activity and run other unauthorized programs on the computer.
The U.S. Federal Bureau of Investigation is investigating the matter, according to David Perry, global director of education with Trend Micro.. "This is an absolutely criminal activity," he said. "They're attaching keyloggers to many thousands of people's computers without their consent"