Last month we started hearing reports about an Iframe injection that infected thousands of websites and servers. The malware in question is a variant of Zlob and attempt to install itself in the client-side throught an ActiveX, as an unsigned Real player control - reported McAfee Avert Labs.

There are details on how the malware try to infect clients, but not so much information on how servers have been infected. In March 2008, McAfee estimated that nearly 200,000 web pages have been found infected, most of them running phpBB.

Today Hostdepot sent a newsletter alerting that their servers are victims of the "iframe" attack and that they are working to resolve it. Many servers worldwide are still infected with this malware. phpBB was at the origin of the Perl/Santy.worm attack back in 2004, but the origin of the malware this time is still unknown.