Cyber criminals invented the hacking machine! According to security researchers, December brought unexpected Christmas gifts for thousands of web servers and companies, as a brand new hacking toolkit proved to be unstoppable and compromised thousands of machines.

According to Yuval Ben-Itzhak, CTO of Finjan, a security company, December 2007 was a very bad period for more than 10,000 web servers, which were infected with a malicious hacking toolkit, called the “random js toolkit.” In June, Finjan found an average of 30,000 newly infected malicious Web pages every day as the result of this evil hacking tool. However, Finjan claimed recently that the situation is even worse today.

The “random js toolkit’s” inventors created the toolkit as a very smart and difficult to deal with machine. They designed it to hide both from computer security researchers and from security software. According to Finjan’s researchers, the toolkit’s mechanism is simple: it generates one-time use random URLs and thus, it prevents malicious Web pages from being analyzed and blacklisted by security software and/or security researchers.

The malicious software is also able to store the IP addresses of the Web crawlers, used by search engines and security companies, so that it can serve them clean content. Thus, only visitors that the toolkit “sees” as real people get the malicious code.

According to Finjan’s report, a single hacking toolkit is able to serve more than 13 different exploits that try to infect the users’ computers. The chance of infection is also very high because the exploits are dynamic.

The security company said it notified the companies that owe the infected web servers, so that they can address their security issues.