Our team recently found a malicious JavaScript injection within the WordPress index.php theme file on a compromised WordPress website which ultimately redirects site visitors to a survey-for-gifts scam website. At this time of writing, we have seen over two thousand new infected sites since we started tracking this infection.
The injection seen below is used to begin a chained series of redirects involving the malicious domains gotosecond2[.
Continue reading Malicious JavaScript Used in WP Site/Home URL Redirects at Sucuri Blog.
Source: Sucuri
