A subdomain of the Los Angeles Times publication has been found to be redirecting users to a website that hosts the notorious BlackHole exploit kit.
Journalist Brian Krebs was among the first to spot the compromised subdomain. Researchers from Avast! Have decided to check it out and they have found that the subdomain has actually been hosting malicious iframes since December 23.
The sites used in the attack are hosted in the US and the Netherlands, but they’re most likely legitimate ones compromised by the cybercriminals.
read more......http://news.softpedia.com/news/LA-Times-Subdomain-Redirects-Users-to-BlackHole-Exploit-Kit-Site-328148.shtml?utm_source=dlvr.it&utm_medium=twitter