Trend Micro Incorporated (TSE: 4704), a leader in network antivirus and
content security software and services, today announced the
accelerating infection over the weekend in Italy of seemingly
legitimate web pages loaded with malicious code that could plant a
keylogger to steal user passwords, or turn computers into proxy servers
for various other attacks. Trend Micro data indicates that tens of
thousands of users worldwide have already accessed compromised urls,
oblivious to the threat as a result of their natural web surfing
activity. The initial HTML malware takes advantage of a vulnerability
in so-called “iFrames” that are commonly used on websites and commonly
exploited. Trend Micro researchers believe it was initially probably an
automated attack, created from a computer Trojan-making kit.

Details …