- Last month, an obfuscated pop-up script was used to leverage baidu[.]com search results to redirect users to the attacker’s domain.
Why are attackers using it?
A malicious attack using this technique can come from many sources and can be hidden in several ways. It could be used for obfuscation, redirection, URL cloaking, content escaping, and polymorphic functions—-all at the same time.