The usual pattern we see when dealing with exploit kits starts with a legitimate website that gets compromised and used to automatically redirect its visitors to the actual malicious content.
NBC.com may have sent visitors to infected URLs serving up Trojan software (RedKit) for 24 hours. At the time of this blog post ESET researchers still see some related sites similarly compromised.
This article examines the relationship between the Black Hole exploit kit and Win32/Carberp.
Automatically receive new posts via email:
Delivered by FeedBurner