Incident Response, Malware, TDR, Vulnerability Management changes original statement, says readers were exposed to malware


When Websense posted on Monday about how – a website that attracts more than 10 million visitors each month – was redirecting users to Caphaw malware, an spokesperson told a day later that it was not the case.

On Thursday, changed its stance, explaining in a statement emailed to that malware surfaced on its servers a day later.

“All viruses from the site have been eliminated and we're keeping a sharp eye for similar threats going forward,” according to the statement. “We estimate that a very small percentage of our readers may have been exposed to the malware (approximately 0.1% of our readers).”

On Tuesday, Alex Watson, director of research with Websense, told that attackers likely compromised the website using a local vulnerability, such as cross-site scripting (XSS).

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.