Symantec has been notified that the Web site ladestra.info, a site related to a right-wing Italian political party, has been compromised. The Web site is hosting a malicious iframe that leads to a typical browser exploit using the Neosploit tool, which forces an infected computer to install the newest version of Trojan.Mebroot.
Using elections as a channel for spreading malicious code is something we have already seen (...
Symantec is tracking more and more high-traffic Web sites that become compromised and then used to spread malicious code. After the breach our MSS team spotted out on Tata, we have been notified of another Web site with a similar issue.
Today the Italian Web site www.emule-italia.it had been compromised and was hosting an obfuscated script:
The script, when deobfuscated, was showing an iframe pointing to http://[REMOVED]...
