Injection of malicious code into JavaScript files is not new; however, we recently observed a steep increase in the use of this method, particularly in jQuery libraries, in order to redirect users to malicious web pages. Why has injecting malicious code into jQuery become so trendy? Looking at benign jQuery libraries tells the whole story–jQuery is a feature-rich JavaScript library that is commonly used in web applications. jQuery serves as an easy-to-use fast API that simplifies client-side development. In this case, speed and efficiency have higher priority than human readability, therefore jQuery includes only essential features to keep the code...