Security researchers at Check Point have lifted the lid on the infrastructure and methods of an enormous "malvertising" and banking trojan campaign. The operation delivered malicious adverts to millions worldwide, slinging all manner of nasties including crypto-miners, ransomware and banking trojans. The researchers told The …

Security bods have closed off a malvertising campaign targeting an ad network spread through an ad network that targeted smut site P0rnHub. The attacks exposed “millions of potential victims in the US, Canada, the UK, and Australia”, said the Proofpoint researchers who discovered the attack. Proofpoint said the campaign was …

Security researchers have suggested that the ransomware attack on University College London last week was spread through a "malvertising" campaign. Proofpoint reckons the AdGholas group spread the infection using malware-tainted online ads. This was a "zero-click required" campaign that could infect users who simply visited a …

A strain of adblocker-aware malvertising is responsible for a range of scams, exploits and general skulduggery. RoughTed can deliver a variety of payloads including exploit kits and malware. Hackers are leveraging fingerprinting and adblocker-bypassing techniques in a bid to ensure that marks are served content from RoughTed- …

A two-year long, highly sophisticated malvertising campaign infected visitors to some of the most popular news sites in the UK, Australia, and Canada including Channel 9, Sky News, and MSN. Readers of those news sites, just a portion of all affected (since it also affected eBay's UK portal), were infected with modular trojans …

Adblock Plus is celebrating, but publishers are scratching their heads, after German courts ruled blocking online advertisements is legal. All claims brought by German media cornerstone Spiegel Online against Eyeo GmbH, creators of Adblock Plus, were late last week dismissed by a court in Hamburg, Germany. Seven media houses …

Sysadmin Blog I don't know that I can afford to read the news anymore. As a columnist for several tech magazines I find this somewhat ironic, but my occupation makes the truth of it no less real. Technology can solve this problem for me, but politics probably won't allow it. News can be consumed in a few different ways. The first through …

Pop trash giant PerezHilton.com has served the world's most dangerous exploit kit to some of its 500,000 daily visitors. The site is home to Hollywood and celebrity news and has been pwned before under hugely successful malvertising campaigns using the dominant Angler exploit kit. Cyphort researcher Nick Bilogorskiy says the …

A rogue advertiser abused the Taggify self-serve ad platform to inject malware-installing code into browsers visiting the websites of two US TV stations. It was a textbook malvertising attack: to infect victims' PCs, the dodgy ads used the Angler Exploit Kit, which is a grab bag of code that exploits weaknesses in Adobe Flash …

Scores of Game of Thrones pirates may have had computers encrypted by ransomware after malvertisers served the dangerous malware through the Pirate Bay during the mega-series' season six première last weekend. MalwareBytes researcher Jerome Segura says the hard-working Magnitude exploit kit authors were able to target pirates …

Malwarebytes researcher Jerome Segura says more than 400 malicious advertisements have been shipped through ad network AdsTerra in two weeks. The advertisements are slinging the hugely successful Magnitude exploit kit which has been the most impactful and prolific of exploit kits used in recent malvertising campaigns. Emails …

Malwarebytes researcher Jerome Segura says malvertisers have served the world's most dangerous exploit kit - Angler - through compromised advertisements run on LiveJournal.com and news service Likes.com. The attacks are the latest in a string of brazen and successful malvertising campaigns that are smashing the web's most …

Top-flight US online publishers are serving up adverts that attempt to install ransomware and other malware on victims' PCs. Websites visited by millions of people daily – msn.com, nytimes.com, aol.com, nfl.com, theweathernetwork.com, thehill.com, zerohedge.com and more – are accidentally pushing out booby-trapped adverts via …

Cybercrooks have been caught running booby-trapped ads on Skype to redirect users towards an Angler exploit kit trap. The tactic, part of a broader malvertising campaign, shows that users can be exposed to malicious ads pushing ransomware and other crud without even using a browser-based app, the most common exploit route. …

Malicious adverts spreading malware managed to make their way onto popular French video streaming site Dailymotion. The infection involved a rogue ad and JavaScript that ultimately directs surfers to sites harbouring the Angler Exploit Kit (EK). The practical upshot was that Windows users running out-of-date software, such as …

Malwarebytes threat analysis man Jerome Segura says compromised Reader's Digest pages are being used to serve the Angler Exploit kit and trojan backdoors. Segura says the site was still serving the highly capable threat today as the publisher had not yet responded to his disclosure. "The attack consists of a malicious script …

Ad-blocker blocker PageFair has announced that it was hacked over Halloween, exposing those visiting sites running its free analytics service (allowing those sites to see how many of their visitors were using ad-blockers, perhaps to prevent being served malware by a third-party) to an executable masquerading as an Adobe Flash …

German surfers are under attack from multiple directions this week because of a widespread malvertising campaign. Users of eBay.de and subscribers of ISP T-Online.de were confronted with tainted ads after cybercrooks succeeded in pushing malicious traffic through rogue systems. The attacks began after hackers circumvented …