While restricting web surfing to trusted sites should reduce the risk of infection, the malicious code can be injected into any website.

尽管限制浏览器只浏览信任站点可以减少受到攻击的风险，恶意代码可以被植入任何的网站。

youdao

There are a number of ways that the handset owner could be duped into running malicious code, and the most likely is being duped into visiting a malicious website.

FORBES: Move up http://i.forbesimg.com t Move down

Description: An out-of-bounds memory read issue in Safari 3 Public Beta for Windows may lead to an unexpected application termination or arbitrary code execution when visiting a malicious website.

ENGADGET: Apple releases Windows Safari 3.0.1, squishes security bugs

They could click on a link, scan a QR Code, or even scan an NFC tag containing a link to the malicious website.

FORBES: Move up http://i.forbesimg.com t Move down