Hi malware fighters,
Using legit, hacked, websites to infect internet users with malware has nearly doubled compared to last year. 80% of malware now is situated on poor secured web pages. Attackers hack these sites through SQL-injection and other techniques and then link to exploits through iframes, that are hosted on other sites. Attacking normal legit sites means a lot of visitors, that trust these websites as well. Attackers can target special interest groups, according to websites they hacked. That websites is their main line of business now, can be concluded from the number of malicious attachments, that number came down by 50%, see:
https://www.cisco.com/offer/email/17986/1/Cisco2008Annual_Security_Report.pdfI am protected inside Firefox through the following extensions defense line, finjan, NoScript, firekeeper, RequestPolicy, DrWeb's av link checker, and last but not least avast's Webshield!
polonus