For the Latin challenged, the title reads “Cost Accountants of India‘s website is Infected”. Users of a site which belongs to the “Institute of Cost Accountants of India” need to be on the lookout. The site appears to be injected with a malicious script, which may redirect the users to other potentially malicious sites. Here’s a snippet of the malicious source code:
The malware authors have commented their part of the code in Latin. The malicious code uses a twitter API to get the trending topics of the day, and generates malicious domain names on the fly to which users will be finally redirected.
K7 Computing has informed the party in charge about the attack. K7 security products prevent access to this malicious URL.
Lokesh Kumar
K7 TCL
If you wish to subscribe to our blog, please add the URL provided below to your blog reader:
https://labs.k7computing.com/feed