Darkreading.com reported that Web injects have led to “recent evidence of threat actors using Web injects to target cryptocurrency exchange Coinbase and Bitcoin wallet Blockchain.info.” The March 22, 2018 article entitled “Criminals Using Web Injects to Steal Cryptocurrency” included this description of Web injects:
Web injects is basically code for injecting malicious content into a Web page before the page is rendered on a user’s browser.
This work by intercepting and modifying traffic between a Web server and user browser in such a manner that the victim typically does not notice anything amiss.
Web injects can be used to add or delete content on the Web pages that a victim sees.
This bad news, but not a surprise!