Thousands of Websites infected by a new Web attack during the past few days won’t necessarily be safe even after they remove the offending code. The new attacks are mostly using a new, stealthier, and more closely guarded SQL injection toolkit. Among the infected sites found by Kaspersky were Travelocity, Travelocity.org, and missouri.edu.com. The attacks, which appear to originate from China, appear to have peaked yesterday, according to Kasperski. The attackers appear to be after passwords, but not just for online gaming.”]
Source: https://www.darkreading.com/attacks-breaches/relentless-web-attack-hard-to-kill