InfoWorld

Malware hides behind JavaScript, PNGs to bypass browser security

A newly discovered cross-site scripting attack uses a sly variant on an existing hack to deliver malware in a way that’s so heavily obfuscated, even experts didn’t notice it at first. Said experts ...
CSOonline

E-Commerce Sites Based on Open Source Code Under Attack

About 100,000 Web pages for e-commerce sites based on the open source OS Commerce software have been compromised with malware through a mass iFrame injection attack, according to security firm ...