Hi malware fighters,
What to watch out for? Most attacks on hacked websites will place malicious JavaScript (74%), while malicious iFrames are being used for the remaining 26% of these attacks. JavaScript could have various advantages. It gives access to the DOM elements in the rest of the webpage, to provide attackers with additional info and possibilities to hide their malcode. An injected JavaScript gives access to the 'page referrer', adress bar, user cookies and could insert malicious content into a webpage. This is something iFrames can not do.
The best policy here is to fully patch and upgrade your software and OS, use a browser with a script blocking extension like NS, that could also block iFrames. For checking whether a web page is vulnerable or already being hacked and has malicious content, there are various online sources and specialist tools,
polonus