The pseudo-Darkleech campaign is one of the most notorious and ongoing attacks of recent years. The campaign has been a bit of chameleon since it was disclosed in March 2015 by researchers at Sucuri. The latest bit of its shape shifting involves the elimination of large blocks of injected script that had become a hallmark of pseudo-darkleech attacks since February. The changes were spotted last Thursday on a compromised site called gennaroespositomilano[.]it.
Source: https://threatpost.com/the-changing-face-of-pseudo-darkleech/119036/