Summary: A sophisticated client-side JavaScript attack has compromised over 500 websites, including high-profile government and university domains, by injecting hidden links into the Document Object Model (DOM). This malicious campaign is believed to be part of a black hat Search Engine Optimization (SEO) effort aimed at manipulating search engine rankings. Researchers have identified the attack’s technical mechanisms and highlighted the need for robust security measures to protect against such threats.

Threat Actor: Unknown | unknown
Victim: Various Websites | various websites

Keypoints :

• Over 500 websites compromised, including government and university domains.
• Malicious JavaScript hosted on scriptapi[.]dev injects hidden links to manipulate SEO.
• Organizations are advised to implement security measures like CSP, SRI, and regular audits.