According to http://permalink.gmane.org/gmane.comp.security.ids.snort.emerging-sigs/19247，Blackhole Exploit Kit 2.0 infected many websites named "*/linkendorse.html". It often uses large SPAM mails to spread the malicious links! AegisLab also collected many similar malicious links. When you connect to these victim websites，they will redircet you to hxxp://onlinedatingblueprint.net/news/suspect-someplace.php We can see "Redirecting to Complain details… Please wait…"，the sentence is well-known Blackhole Exploit Kit's pattern! For […]

Follow