Hackers Push SocGholish Malware Through A Large Number Of Newspapers Sites In A Supply Chain Attack
A big number of newspaper sites belonging to an undisclosed media company have been compromised to push the SocGholish JavaScript malware framework (FakeUpdates). The undisclosed company provides both video content and advertising to major news outlets. The vector of infection was the injection of the malicious JS code into a normal JavaScript file that gets loaded by the news outlets' websites. Read more...