The SANS Internet Storm Center received numerous reports that Joomla sites, as well as WordPress sites, had been compromised and iFrames had been injected that were pointing visitors to malicious sites. The exploits were loading scareware on victims computers, ISC handler John Bambenek said. German security and tech site The H reports that the German Computer Emergency Response Team (CERT-Bund) also confirmed attacks emanating from Joomala sites. In September, the company warned of a series of automated attacks against the Joela Content Editor versions 2.0.11 and earlier that were infecting websites with malicious content.
Source: https://threatpost.com/joomla-wordpress-sites-hit-iframe-injection-attacks-121212/77310/