I published the following diary on isc.sans.org: “Malicious JavaScript Targeting Mobile Browsers“:
A reader reported a suspicious piece of a Javascript code that was found on a website. In the meantime, the compromized website has been cleaned but it was running WordPress (again, I would say![1]). The code was obfuscated, here is a copy… [Read more]
I never got details about the infection vector. If your webpage suddenly started to distribute the same kind of content, I’d definitively investigate the incident.
Hey Xavier, I got the some Malicious JavaScript on my site.
Do you know where the redirect was injected, i´m not sure where i have to look for it.