A couple of days ago I was investigating an attack that a reader submitted to me that was related to the recent nine ball attacks as reported by WebSense. (Part 1 | Part 2) The attackers use the same techniques to exploit victims but this time have moved to new domains and updated their payloads. [...]
