Menu
Visitors to top porn sites hit by malvertising attack

Visitors to top porn sites hit by malvertising attack

A malicious advertisement posted through an ad network tried contained a Flash Player exploit

In the latest attack involving malicious advertisements, hackers managed to launch Flash Player exploits against the visitors of several popular porn websites.

It's not clear how many users were impacted, but the affected websites have over 250 million monthly visits combined, according to researchers from Malwarebytes who spotted and analyzed the attack.

The malicious ads were posted through an advertising network called AdXpansion that was abused in similar incidents in the past.

The attackers managed to distribute through the network a Flash-based ad that attempted to exploit a vulnerability in Flash Player.

The flaw affects Flash Player through version 17.0.0.134, which was released within the last two months, the Malwarebytes researchers said in a blog post Thursday. Affected sites listed in the blog post include Drtuber.com, Nuvid.com, Hardsextube.com and Justporno.tv.

Unlike more subtle malvertising attacks, where rogue ads redirect the user's browser to a third-party server that hosts an exploit kit, in this attack the ad launched the exploit code directly.

This approach might be an attempt to evade detection by security tools that track exploit kit servers and traffic patterns.

"It is interesting to see the trend of exploit kits taking the appearance of advertisers by leveraging Flash for serving the 'creative' and exploit in one single package," the researchers said. "It is a minimalist type of approach which seems to work quite efficiently."

Malvertising attacks have been frequent occurrences in recent months and have affected a large number of ad networks, despite efforts from their owners to prevent them.

On Thursday, security researchers from Trend Micro reported a separate attack, where cybercriminals posted malicious ads through the compromised servers of an advertising company called Mad Ads Media.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags securitymalwareonline safetytrend microExploits / vulnerabilitiesMalwarebytesAdXpansion

Featured

Slideshows

Meet the leading female front runners of the Kiwi channel

Meet the leading female front runners of the Kiwi channel

Reseller News honoured the leading female front runners of the New Zealand channel at the 2018 Women in ICT Awards (WIICTA) in Auckland. The awards honoured standout individuals across seven categories, spanning Entrepreneur; Innovation; Rising Star; Shining Star; Community; Technical and Achievement.

Meet the leading female front runners of the Kiwi channel
Meet the top performing customer-centric Microsoft channel partners

Meet the top performing customer-centric Microsoft channel partners

Microsoft honoured leading partners across the channel following a year of customer innovation and market growth in New Zealand. The 2018 Microsoft Partner Awards recognised excellence within the context of the end-user, spanning a host of emerging and established providers.

Meet the top performing customer-centric Microsoft channel partners
Reseller News launches new-look Awards at 2018 Judges’ Lunch

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Introducing the Reseller News Innovation Awards, launched to the channel at the 2018 Judges’ Lunch in Auckland. With more than 70 judges now part of the voting panel, the new-look awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors.

Reseller News launches new-look Awards at 2018 Judges’ Lunch
Show Comments