‘The Register’ Hit by Scripting Attack Via Ad Server

Simon Willison:

Here’s a nasty one: popular tech news site [The Register] was hit on Saturday by [the Bofra exploit], a nasty worm which uses an iframe vulnerability in (you guessed it) Internet Explorer to install nasty things on the victim’s PC. Where it gets interesting is that the attack wasn’t against the Register themselves; it came through their third party ad serving company, Falk AG.

Monday, 22 November 2004