Web client attack

A web client attack is a technique, often coupled with social engineering, to spread malware. The victim is lured to a malicious website, often hosted on other systems under the attacker’s control, where multiple exploits may be tried in an attempt to compromise vulnerabilities in the victim’s browser or system. If successful, the malware is installed without the user’s knowledge.