In computer security, MPack is a PHP-based malware kit produced by Russian crackers.
In August 2007 it was believed to have been used in an attack on the web site of the Bank of India which originated from the Russian Business Network.
The server-side software in the kit is able to customize attacks to a variety of web browsers including Microsoft Internet Explorer, Mozilla Firefox and Opera.
MPack generally works by being loaded in an IFrame attached to the bottom of a defaced website.
When a user visits the page, MPack sends a script that loads in the IFrame and determines if any vulnerabilities in the browser or operating system can be exploited.