Drive-by downloads is usually embedded on your website via some type of script injection, which could be associated with a link injection. The point of a drive-by download is often to download a payload onto your user’s local machine. One of the most common payloads informs the user that their website has been infected and that they need to install an anti-virus product.
There are a number of ways an attack can get in. The most common causes are:
- Out of date software,
- Compromised credentials (wp-admin, FTP),
- SQL injection.