So the good folks over at Exploit Prevention Labs have found a very interesting drive-by infection scheme using banner-ads embedded within legitimate web-sites.
Here’s a great video of the exploit in action.
You’ve probably seen in some of my other posts that I clean up people’s machines on the side. It’s a brisk business… and 9 times out of 10, the reason they’re messed up is because someone’s been surfing pr0n on the machine and it’s owned. This type of exploit is going to make things a lot more interesting for me since that’s usually the first place I go looking… the cache to see what kind of stuff people have been doing with their machines and what sites they’ve been too… now, it is entirely possible that the browsing record will be completely innocuous.
Fun…
