The source code for banking malware GM Bot is leaked to cybercriminals who will likely recompile the free code to numerous new variants, according to IBM X-Force threat intelligence.

The source code of the Cerberus banking Trojan has been released as free malware on underground hacking forums following a failed auction.

The report also noted that 80 percent of tested sites are vulnerable to cross-site scripting (XSS) attacks, which lets an attacker run malicious code on a website or web application.