<ul data-eligibleForWebStory="true"><li>A massive cyber campaign has infected over 269,000 websites with JSFireTruck malware, posing a global threat.</li><li>Palo Alto Networks Unit 42 detected a surge in JavaScript infections between March 26 and April 25, 2025.</li><li>JSFireTruck malware leverages obfuscated JavaScript code, impacting numerous legitimate websites.</li><li>The injected script redirects users arriving from search engines to malicious destinations.</li><li>The attack is linked to the HelloTDS traffic distribution service, using multi-layered infrastructure.</li><li>JSFireTruck and HelloTDS blend stealth with scale, complicating detection and defense efforts.</li><li>Any user visiting compromised sites via search engines could be at risk of redirection.</li><li>Webmasters are advised to scan for obfuscated JavaScript, while users can use adblockers or script-blocking plugins for protection.</li><li>Regularly updating security tools and staying informed on cybersecurity alerts is essential to mitigate the JSFireTruck threat.</li></ul>

Over 269,000 Websites Infected in Massive JSFireTruck Malware Attack

Discover more