Last week, we detected that Sparc.com website was compromised by cybercriminals. In this case, the criminals injected a script into the website that adds an IFrame to the page. This IFrame redirects the website visitors to malicious content located on updatedate.cn .

Our recent tests indicate that updatedate.cn no longer serves malicious code, however we did find records in our systems indicating that this domain used to serve malware since July 15th 2009, mostly exploiting the PDF vulnerability to infect users.

We have contacted sparc.com and reported on the incident; trusting that the problem will be fixed soon.

Posted by Yuval Ben-Itzhak