Avast security alert to new web threat.. Created 15 years ago2009-04-29 12:06:04 UTC by Tito

I just got a popup security alert from my Avast anti-virus program. It is telling me of a new hacking threat called "iframe", which apparently is a malicious script called "HTML:Iframe-inf". Anyway, the crazy thing about this, is that your PC can get infected just by visiting trusted, legitimate commercial sites.

Here's the official Avast report detailing on exactly how this malware operates: http://www.avast.com/eng/avast-and-forum-users-combine-to-defeat-website-hackers.html

It's interesting how they always find new ways to screw up computers.

Nothing new here. People have been hacking sites and adding iframes that load malicious content (in the form of JavaScript/Flash/image exploits) from their own domains for a long time. Use Opera and disable iframes under Preferences -> Advanced -> Content -> Style Options and enable it for sites where they're absolutely neccessary under Site Preferences -> Display. Problem solved. Disabling plug-ins and JavaScript by default also helps.