Gumblar, a botnet that emerged as one of the Internet’s largest earlier this year, is back, researchers say. A new iFrame injection is pointing once again to gumblar.cn — the malware domain that originally earned the botnet its name. In October, 28.8 percent of all ScanSafe Web malware blocks were the result of the latest attacks — double the amount observed in the May outbreak, ScanSafe says. In addition to new compromises pointing to the newly-activated gumbler.cn and the already very active Gumbl.combotnet.”]
Source: https://www.darkreading.com/attacks-breaches/gumblar-botnet-resurges