Once the visitors visit this third party page, the Rig Exploit Kit malware is downloaded on their computers.
Modus Operandi
The hackers injected the website with a malicious iFrame.
This automatically redirected the visitors of PopSci website to a third party domain hosting the RIG Exploit Kit.
The same RIG Exploit Kit was used in the US Metro hack as well.
In fact this is the standard operating procedure of RIG Exploit Kit.
If a vulnerable plug-in is found, the appropriate exploit is launched.
source: www.techworm.net
