ScanSafe researcher Mary Landesman has found a new attack that has already infected almost 300,000 Web pages with links directing visitors to a number of different exploits.

“The SQL injection attacks started in late November and appear to be the work of a relatively new malware gang… Hacked sites contain an invisible iframe that silently redirects users to 318x .com (a space has been added to protect the clueless), which goes on to exploit known vulnerabilities in at least five applications,” writes The Register’s Dan Goodin.

“People who visit infected pages receive an invisible link that pulls code from a series of sites tied to 318x .com,” Goodin writes. “The code looks for insecure versions of Adobe Flash, Internet Explorer, and several other Microsoft applications, and when they are deteted it exploits them to surreptitiously install malware known as Backdoor.Win3.Buzus.croo.”

Click here to read the article at The Register.