Compromised websites are legitimate sites that have been unknowingly hijacked. These websites appear credible and trustworthy, which makes them an effective tool for cybercriminals. Attackers often inject malicious code into these sites to execute various deceptive tactics, leading the user to inadvertently perform harmful follow-on activity, such as:
- Fake updates, specifically tailored to appear as the browser in use, enhance credibility and lure users into executing malicious code. To learn more about fake updates, read Fake Browser Updates Targeting USC Devices on the TrojanSecure website.
- Users are prompted with a verification process, to ensure “you are human”, that guides the user to paste and execute a malicious script. To learn more about malicious script scams, read New CopyFix Scam Puts Your Computer at Risk.
- Impersonating well-known antivirus companies and falsely claiming to detect an infection on the computer, prompting the user to scan, which inadvertently downloads malicious payloads or harvests credentials.
To learn more about the many tactics cybercriminals use, visit the Social Engineering page on TrojanSecure.
The following list of compromised websites is provided to assist your department, school, or unit in identifying potential risks of susceptibility and recognizing sites that pose a threat if accessed. The list of compromised websites is updated on a regular basis so USC and our community can keep our students, faculty, staff, and data secure by avoiding these compromised websites.
If you feel you may have been impacted or have questions, please email security@usc.edu.