Apache plugin turns legit sites into bank-attack platforms

The iframes he observed attempted to exploit at least four previously patched security bugs in Microsoft Internet Explorer, Adobe Reader, and Oracle’s Java …