Here’s a nasty one: popular tech news site [The Register] was
hit on Saturday by [the Bofra exploit], a nasty worm which
uses an iframe vulnerability in (you guessed it) Internet
Explorer to install nasty things on the victim’s PC. Where it
gets interesting is that the attack wasn’t against the
Register themselves; it came through their third party ad
serving company, Falk AG.