Researchers have discovered a new exploit called "Underminr" that affects 42% of websites globally, allowing attackers to hijack trusted domains to hide malicious activity from security filters. The attack works by exploiting how DNS and content delivery networks handle web requests separately, enabling threat actors to route traffic through legitimate sites while actually directing users to malicious destinations. The vulnerability stems from how major CDNs group different websites behind the same IP addresses, though some providers like Fastly have mitigated the risk by "bucketizing" domains according to their reputation levels.