Incident Response: Obfuscated JavaScript and Evil Adware Recognition 

 

  Download (registration required, 835K)

  View news release

  Provide feedback on this document

Related Items

  The Merging of Cybersecurity and Operational Technology
Knowledge Center  Visit the Cybersecurity Knowledge Center community


Every day, with code and skills, attackers assault web servers in attempts to redirect users to malicious content. By leveraging the server web pages, nefarious actors perform several types of unsolicited actions against unsuspecting users, such as the theft of personal or financial information. Sometimes, these website attacks are subtler, resulting in underhanded exploitations that replace legitimate code with hacker code. This white paper dissects a real-world web-server attack that compromises a web page by inserting hacker JavaScript code that redirects users to ads that benefit the hacker. The attack analysis identifies the traits that are associated with redirection attacks.