Two days ago, Thursday September 6th, the website of the popular Dutch newspaper Telegraaf.nl was treating its visitors on zero-day malware. The attack was caused by a compromised website of a Dutch online marketing company that handles newsletters and email marketing. Other Dutch websites were running on vulnerable versions of the Joomla CMS with an iframe pointing to the exact same attack site. This attack site was located in Denmark and was hosted on a.com domain registered to a Dutch citizen. RedKit exploit kit can generate and rotate attack URLs every hour.”]
Source: https://hitmanpro.wordpress.com/2012/09/08/banking-trojan-keeps-hitting-the-dutch-hard/