The Super Glue website has been infected by malware for the past five days.
According to Avast, the company website has been infected with a drive-by download which infects users with the Trojan JavaScript Redirector.
Avast said that Super Glue has been informed about the infection which appears to have been removed at the time of publication.
Alena Varkockova, virus lab analyst at Avast, said that the scrips creates a URL at ‘cameoprincess.com' that creates a tag which activates the code.
“The ‘cameoprincess' page contains a JavaScript code, which redirects the visitor several times.
This last address seems to be the page that contained the payload but was since deactivated.
By using a combination of redirectors, it's statistically difficult to uncover the precise payload, the likely candidate is some sort of fake anti-virus,” she said.
She also said that while injected JavaScript downloaders or redirectors are fairly common, the specific AVF Trojan at the superglue site is not.
“It's not in the top 50 malware rankings, but it has already been reported in over 500 sites today,” she said.
_(20).jpg&h=140&w=231&c=1&s=0)
_(22).jpg&h=140&w=231&c=1&s=0)
.png&h=140&w=231&c=1&s=0){kind=logo}
_(26).jpg&w=100&c=1&s=0)
iTnews Executive Retreat - Security Leaders Edition
_(1).jpg&h=140&w=231&c=1&s=0)
