Rogue Apache modules pushing iFrame injections which drive traffic to Blackhole exploit kit
SophosLabs has seen huge volumes of legitimate sites being compromised with malicious redirects in recent weeks.
Fraser Howard explains what’s going on, and how the compromised web servers are almost exclusively running Apache.
Story added 5. March 2013, content source with full text you can find at link above.