Rather than continuously trying to trick people into clicking on malware attached to spam, crooks are focusing on exploiting browser vulnerabilities to infect computers. The systems are compromised when users are routed to malicious Web sites through links embedded in search engine results or legitimate Web sites. Exploit code is loaded once the user lands on the criminal's site.