According to reports, many online users are almost always attacked from the hacked websites of legitimate providers. Previously a majority of surfers used to assume that malware was only found on sex sites and other shady websites, but these days all you need to do is visit your favourite newspaper to come under attack.
Antivirus vendor Avast reports reports that there are now 99 "normal" infected websites for every infected adult site. Current cases, such as the manipulation of Lenovo's server or of Vodafone UK's server seem to support that finding. In the case of Vodafone, attackers manipulated the Blackberry product pages so they could upload an exploit in an iFrame for an unpatched hole in the Windows Help Center.

The link for this article located at H Security is no longer available.