Cybercriminals have attacked many WordPress blogs. They victimized blogs that use version 3.2.1 of WordPress. This version was updated in December, but is still widely used.
Attackers use automatic scanners that look for vulnerable sites and infect them. Users of such sites are redirected to malicious websites. „You will not see the address bar in your web browser change. It happens in milliseconds“ - said Stephan Chenette from Websense.
Security experts discovered hundreds of infected blogs. Its users are redirected to websites that host automatic malware that attacks Java. It infects unpatched Java versions. The hackers’ tools use also TDSS rootkit considered as one of the most dangerous malicious code. If computer is infected with the rootkit the only remedy is to wipe all hard disks.

Source: SC Magazine
02.02.2012