 |
| malicious javascript |
Security Researcher at F-Secure has spotted a piece of malicious code injected in the official website of the City of Franca in São Paulo, Brazil(franca.sp.gov.br).
Hackers managed to place a malicious javascript code in one of the javascript file which loads malicious flash object. The flash object redirects visitors to a malicious domain.
Researcher didn't specify what exactly served in the malicious domain.
The website using outdated joomla version(1.5), Cybercriminals might have exploited any known vulnerabilities. According to researchers, this is not the only Brazil government website using outdated CMS.
F-Secure has contacted the Brazil's Computer Security and Incident Response Team - CTIR Gov and informed about the incident.
