Top Media Websites Are Hitting By The Malvertising Campaign
A large malvertising campaign affects many websites like MSN, NYT, BBC, AOL, NFL and its detected by the three major cyber-security vendors. These websites have a monthly viewership of more than 2.4 billion users.
By using the four different advertising networks, crooks managed to show malicious ads, according to a report by Trend Micro, Trustwave, and Malwarebytes. User's browsing experiences have hacked by the ads, and it led to malicious sites hosting the Angler EK.
Angler EK is a name of a tool by which cyber-criminals analyze the users coming via the malicious ads. Potential victims are being separate and then by using the software vulnerabilities that reside in users' local applications to infect them with the crooks' desired malware.
According to the security researchers, most of the time the Bedep malware was there, in that particular instance. Now, What is Bedep? Bedep is nothing it's a click-fraud bot that provides hijacks the user's mouse and unwanted ads along with that clicking on the ads and generating revenue for the malware's operator.
According to the Trustwave security researchers, they reported that the Angler distributes TeslaCrypt ransomware instead of the Bedep malware. But it was really surprising that most of the infections are with Bedep.
Rubicon, AppNexus, AOL and Google are the four advertising platforms that were responsible for delivering the malicious ads.
The malicious ads have been displayed on many of the famous websites, some of them were:
According to the Malwarebytes Security researchers, the Malvertising Campaign was seen in smaller numbers previously but from the past days, it has been changed and now the Malvertising Campaign seen in bigger numbers than before. The Malwarebytes Security researchers also revealed the techniques and tactics used in the malvertising campaigns.d by the Malwarebytes Security researchers.
Image Source: Trendmicro
Exploit Kits’ activity in the US in the last five days | Graph by Trendmicro |
Angler EK is a name of a tool by which cyber-criminals analyze the users coming via the malicious ads. Potential victims are being separate and then by using the software vulnerabilities that reside in users' local applications to infect them with the crooks' desired malware.
According to the security researchers, most of the time the Bedep malware was there, in that particular instance. Now, What is Bedep? Bedep is nothing it's a click-fraud bot that provides hijacks the user's mouse and unwanted ads along with that clicking on the ads and generating revenue for the malware's operator.
According to the Trustwave security researchers, they reported that the Angler distributes TeslaCrypt ransomware instead of the Bedep malware. But it was really surprising that most of the infections are with Bedep.
Rubicon, AppNexus, AOL and Google are the four advertising platforms that were responsible for delivering the malicious ads.
The malicious ads have been displayed on many of the famous websites, some of them were:
- BBC
- AOL
- The Hill
- Newsweek
- Weather Network
- Comcast's Xfinity
- Microsoft's MSN portal
- New York Times
According to the Malwarebytes Security researchers, the Malvertising Campaign was seen in smaller numbers previously but from the past days, it has been changed and now the Malvertising Campaign seen in bigger numbers than before. The Malwarebytes Security researchers also revealed the techniques and tactics used in the malvertising campaigns.d by the Malwarebytes Security researchers.
Image Source: Trendmicro
ليست هناك تعليقات:
إرسال تعليق