Continuing our seemingly endless series on “trusted” sites that are compromised and then used to attack visitors, this week’s parasitic host is the venerable New York Times.
It seems the Times was compromised via their advertising system (a common theme in these attacks) and was serving up scareware over the weekend (for more on scareware, and how to clean it, see Dancho Danchev’s recent article at the Zero Day blog).
I recently had to clean up some scareware myself on my in-laws’ computer, but fortunately they didn’t actually pay for anything.
Here are some of our previous entries in this series:
Don’t worry, there are plenty more out there – these are just a few that struck our fancy.