Hi - Below is a recent post on this new threat. 9-Ball is essentially an attack on poorly written websites from a security perspective that allow malicious code to be injected into them. While most mainstream websites are safe, it's important to be careful always while online. The 9-Ball malicious attack is no different than many that have been circulating in the past (e.g., Gumblar).
Key protective measures include:
--
Safe Internet browsing and
best practices (don't go to suspicious websites, avoid all spam/attachments, etc)
--
Keep your system full patched. At Secunia.com, the
Secunia PSI tool is a wonderful way to ensure you're up-to-date on all MS and non-MS patches (e.g., Adobe Flash or Acrobat)
-- Keep your
AV protection updated (most of the 9-Ball malware served up on redirected sites are popular exploits)
-- Be careful if presented with any unusual screens.
Avoid popups claiming you have a virus or in entering any personal information online
-- User
CTRL+SHIFT+ESC if you get any unusual pop-ups to safely exit by closing through the task manager (don't click even on a "NO" response, as it may be programmed as a "YES")
Nine-Ball Mass Injection attack compromises 40,000 Websites
http://msmvps.com/blogs/harrywaldron/archive/2009/06/19/nine-ball-mass-injection-attack-compromises-40-000-websites.aspx
Harry Waldron, Microsoft MVP - Enterprise Security
nine ball virus am i protected