About 180,000 ASP.Net web sites affected with mass SQL injection attack. Attack is targeting users whose default browser language is English, French, German, Italian, Polish or Breton. Only a few of the most popular antivirus vendors can detect the dropped malware. The attack can only be successful if a visitor is using an outdated, unpatched browser without the latest version of Adobe PDF or Adobe Flash or Java, security researchers say. Users advised to take advantage of NoScript in order to protect themselves from this.
Source: https://thehackernews.com/2011/10/million-aspnet-web-sites-affected-with.html