Recently, moneycontrol.com a leading financial portal suffered iFrame injection attack. Information security professionals of the portal mitigated the vulnerabilities. iFrame tags are used to embed links of other sites on a website. An iFrame injection is a form of cross site scripting attack wherein hackers inject iFrame tags to a webpage. The tag can download malicious files and infect the webpage and related databases. Visitors to the iFrame injected webpage are redirected to a fraudulent website with malicious files. Subsequently, user’s browser is loaded with exploits to insert virus and Trojan horses on their computer systems. Information Security Blog
Flaws in webpage development may result in backdoors or security holes, which hackers are waiting to exploit. Financial portals and blogs sites are some of the common targets of iFrame attacks as they enjoy regular visits by users and contain large user databases. Such attacks require application of computer forensic techniques to discover the cause of the attack and collection of evidence. Information security professionals usually make use of ethical hacking to identify and mitigate the vulnerabilities.
iFrame attacks can result in compromise of sensitive customer information, alteration of databases and access to privileged information. Information security professionals can limit iFrame attacks by conducting security audits, identifying and deleting unauthorized iFrame tags and codes in the content. They can also identify and delete iFrame tags, which direct to an unknown or suspicious site. On discovery of an attack, all passwords pertaining to the website and associated databases must be changed immediately. The infected files on the website may be deleted and replaced by a new file or backup copy of the old content.