Microsoft Report on SQL Injection Attacks on IIS Web Servers
On April 17 hundreds of thousands domains from USA and from UK are infected with the SQL injection as well as IFrame injection attacks. Including some of the .gov domains also. Many of these websites are serving the malicious web pages using the JavaScript and IFrame. These web pages tried eight different ways to hijack the end user computer and trying to install some malicious software on the end user computer. SQL injection and IFrame attacks are mainly ended up redirecting users to malicious webpages.
