It's come to my attention that every Nucleus-based site on my server is being used to host a malicious script. The script is being generated by every page on every Nucleus-based site, automatically inserted (regardless of skin structure) just before the </body> tag. It looks something like this:
Code: Select all
...but the URLs appear to be generated randomly.
Is there anything I can do short of taking the sites down entirely? And is there any hope that a security patch will be released to correct this vulnerability?