Saw some news today about “94,000 sites hacked” and sending users to a malware-ridden site. That’s a hell of a lot, and prompted some investigation on our team. Sadly, we’ve found very few useful bits of information about what happened (I suspect some common piece of software on all these sites was pwned…analytics? ads? site mgmt?). We have, however, decided to block two URLs, *.ucmal dot com and *.uc8010 dot com as they are distributing malware. The Google search linked in that first article shows an impressive array of pages and sites…