Page 1 of 2 12 LastLast
  1.    05 Aug 2015 #1
    Join Date : Jan 2014
    Carencro, LA 70520
    Posts : 8,257
    Mint 18.2

    Flash bites again: Huge malware campaign on Yahoo ads hits millions


    Yahoo has shut down a massive malware campaign that may have affected millions of visitors to its sites.

    Yahoo confirmed it had stopped the scheme, which began last week, which had been using Yahoo's ad network to infect end users PCs with malware. 'Malvertising', as it's known, is an increasingly common technique where an attacker essentially tricks an automated ad network into delivering malware embedded in ads. Malvertising is a silent killer because malicious ads do not require any type of user interaction in order to execute their payload. The mere fact of browsing to a website that has adverts (and most sites, if not all, do) is enough to start the infection chain," said Jrme Segura, a senior security researcher at Malwarebytes, the security company that discovered the attack.

    According to Segura, over nearly a week the malicious ads, which were served through ads.yahoo.com, redirected Yahoo visitors to several different domains that ultimately exposed them to the Angler exploit kit. Some of those redirect domains were hosted on Microsoft's Azure, the researcher noted.

    Exploit kits contain attacks for flaws in widely-used browser plugins for Chrome, Firefox and Internet Explorer, such as Adobe's Flash Player, Oracle's Java, Microsoft's Silverlight, and others. Typically the exploits target computers running outdated versions of the plugins.

    Researchers revealed last week that another exploit kit dubbed RIG was infecting machines at a rate of 27,000 per day, primarily using malicious ads and a cocktail of recent Flash Player flaws.
    Source
      My ComputerSystem Spec
  2.    05 Aug 2015 #2
    Join Date : Aug 2014
    Australia, Adelaide
    Posts : 1,534
    W7 Ultimate SP1 (64 bit), LM 18.2 MATE (64 bit), W10 Home (64 bit)

    Another good reason to ban Internet advertising (and Flash).

    "Old Media" should lobby the Government; "No one has ever caught PC malware from a newspaper ad."
      My ComputerSystem Spec
  3.    05 Aug 2015 #3
    Join Date : Jan 2014
    Oak Ridge TN, USA
    Posts : 24,523
    Windows 10 Pro x64

    Quote Originally Posted by lehnerus2000 View Post
    Another good reason to ban Internet advertising (and Flash).
    I could agree with Flash but Internet advertising is how John and others pay for sites like this one.
      My ComputerSystem Spec
  4.    05 Aug 2015 #4
    Join Date : Aug 2014
    Australia, Adelaide
    Posts : 1,534
    W7 Ultimate SP1 (64 bit), LM 18.2 MATE (64 bit), W10 Home (64 bit)

    Quote Originally Posted by BunnyJ View Post
    I could agree with Flash but Internet advertising is how John and others pay for sites like this one.
    I have no real objection to static ads (they could use gifs just like in the "Good Old Days").
      My ComputerSystem Spec
  5.    05 Aug 2015 #5
    Join Date : Jan 2014
    Oak Ridge TN, USA
    Posts : 24,523
    Windows 10 Pro x64

    Quote Originally Posted by lehnerus2000 View Post
    I have no real objection to static ads (they could use gifs just like in the "Good Old Days").
    +1.. add flash to anything can be problematic at best.
      My ComputerSystem Spec
  6.    05 Aug 2015 #6

    Quote Originally Posted by lehnerus2000 View Post
    Another good reason to ban Internet advertising (and Flash).

    "Old Media" should lobby the Government; "No one has ever caught PC malware from a newspaper ad."

    Hi there

    Actually not quite true -- well you can't get PC malware but you most certainly can get Scammed -- people have often replied via Newspaper ads to "Scams" etc -- in particular - "Ponzi Schemes" and Investment Boiler House schemes. There are all sorts of other Scams one could get lured into via a newspaper Ad. What about "Timeshares" on non existent properties etc etc.


    Scams have been around since Man ever started trading -- it's just that it's probably easier to become a "Scamee" (i.e a Victim) much quicker using the Internet than by using other conventional ways of advertising.

    The only way you could stop Scams is to ban TRADING of any sort -- That's just not going to happen.

    Education is the only answer :

    Remember "The Price of Education is expensive -- but the price of Ignorance is Astronomical". I don't know who first said that but it's even truer today than probably when that phrase was first coined.

    I do agree though Non Static ads are HUGELY irritating -- I can live with some STATIC advertising on sites -- things do have to be paid for - but irritating the customer seems the wrong way to go about it - especially as it leads to POORER security too.

    Cheers
    jimbo
      My ComputerSystem Spec
  7.    05 Aug 2015 #7
    Join Date : Jul 2014
    Serbia
    Posts : 10,178
    W10 Insider + Linux

    For very long time now I have Flash set to ask to initialize and don't have no Flash based live adds but at most leave black holes on screen. Wander if any of adds are made in HTML5 ?
      My ComputersSystem Spec
  8.    05 Aug 2015 #8
    Join Date : Apr 2015
    California
    Posts : 362
    Windows 10 Pro x64

    Three programs that I keep off my computers are Adobe Acrobat, Java and Adobe Flash. Prevents a lot of problems.
      My ComputerSystem Spec
  9.    05 Aug 2015 #9
    Join Date : Oct 2014
    Posts : 1,552
    W7 32 bit, Linux Mint Xfce 18 64 bit

    How do you tell if your infected or not? The way I back-up recently may have saved me. However, I may need to re-do a clean install of 10 and delete the backup image of windows 10. Firefox defaults to yahoo for search results.
      My ComputerSystem Spec
  10.    05 Aug 2015 #10
    Join Date : Jul 2014
    Serbia
    Posts : 10,178
    W10 Insider + Linux

    There's no guarantee that you will be infected, odds of getting infected are not great. Some unusual activity may suggest infection but there are many other more dangerous things. Malwarebytes and others like that can detect and clean, I also use Advanced cleaner and Avast Browser Cleanup.
    FF can be set to use Google and other search engines by default.
      My ComputersSystem Spec

 
Page 1 of 2 12 LastLast


Similar Threads
Thread Forum
Request feedback campaign; save minutes making install media
First and only time I tried to use the Feedback App, the OS changed my local account to an MS account, which I dont want to use (hadnt memorized the password and had to reinstall the OS). Would appreciate anyone who feels similarly about these...
General Support
Well This Bites: Spock's Gone
Leonard Nimoy Dead at 83 | Variety :(:cry:
Chillout Room
Flash zero-day flaw under attack to spread ad malware...
More
Windows 10 News
Quick, the Quadrantids! 2015's First Meteor Shower Hits
Everything you need to know: Quadrantid meteor shower in 2015 | Astronomy Essentials | EarthSky Quick, the Quadrantids! 2015's First Meteor Shower Hits Brief Peak - NBC News
Chillout Room
600 Millions PCs Waiting for Windows 10
More
Windows 10 News
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 15:10.
Find Us
Twitter Facebook Google+ Ten Forums iOS App Ten Forums Android App



Windows 10 Forums