An in-depth look at one of the Web's most famous crime kits
By Steve Ragan Aug 5, 2014
"Magnitude makes itself known:
In October 2013, Magnitude made headlines when the kit was used in an attack on visitors to PHP.net. At first, when Google flagged the development platform's homepage as malicious, there was speculation that the warnings were little more than a false positive.
However, less than a day later, PHP.net administrators confirmed that their servers were breached. Visitors were redirected to Magnitude via a compromised JavaScript file, and targeted by exploits for various vulnerabilities in Java and Adobe Flash.
Earlier this year, Magnitude gained additional public attention after the kit was used in an advertising attack on Yahoo. Criminals purchased ad space on Yahoo, and used the ads to redirect visitors to domains hosting the Magnitude landing page. From there, the kit would attempt to exploit vulnerabilities in Java in order to deliver malware."
Full Article