Cree, sorry guys... those advertisements were actually malware Google advertising subsidiary DoubleClick and Microsoft MSN ads service both have admitted to the fall of an intelligent system by some nasty black hat hackers. Malicious banner ads for services were trying to perform drive - by operation of downloading and installing malicious software on the computers of users. As with many large (or terrible) episodes of computer crime, a key component was clever social engineering. Hackers has created a site called ADShufffle .com - a letter from ADShuffle.com, a major online advertising technology company. Apparently, it is enough to cross the screeners at Microsoft and Google ads. Security firm Armorize seems to be the first noticed the attack. Chief Wayne Huang Armorize details technology officer unusual in a blog, written incident: users visit sites that integrate banners from DoubleClick or rad.msn.com, the malicious javascript used ADShufffle.com (notice of paragraph 3), starts a process of download car and if successful, hard drive more and other malicious software are installed on the victim machine without the need to take victim to doing nothing or by clicking on anything. Simply visiting the grubby page visitors.Known sites affected: sites that incorporate banners DoubleClick or rad.msn.com, including for example Scout.com (from DoubleClick), realestate.msn.com, msnbc.com (using both) and mail.live.com. We wish to emphasize here that it is quite possible that several exchanges, in addition to those listed here, have been serving videogame ADShufffle ads.For all the ingenuity, the attackers used fairly standard operating packages including Neosploit and operate Eleonore kit. Two kits are popular among black hat hackers, but also among security experts who buy their battle-testing business security systems last attack used JavaScript exploits to initiate a procedure for downloading, which was triggered when users have visited a page that was compromised banners. Ad service would then request code advertising servers from hackers, launch the attack. A spokesman for Google provided advertisements were only for a very short period and have since been terminated. Company is now investigating the incident. Microsoft has not issued a statement, but probably takes similar incident measures.The is not Google's first brush with the advertising of malware. Before malicious hackers have proved to be taking advantage service Google AdWords. In this case, the key to the success of criminals used links look legitimate. "Game reviewers fought each other to write the brighter coverage for the power systems of Sony, Ms. reviewers flipping coins to see which would examine the Nintendo Wii." "The losers were blocked with employment."-Andy MarkenMost popular ArticlesMozilla kills "no follow" tool, Microsoft added a IE9
8 December 2010 10 H 50
U.s. Government shells 110 (b) $ USD in the motto "High Tech".
December 7, 2010, 1 H.
The scoop full chrome OS and call Google Notebook Beta Testers
December 8, 2010, 7 H 27
In nest Android 3.0 "Bee" previewed, Sweet new Tablet presentation
7 December 2010 10 H 01
Report: Apple drop from Intel, NVIDIA could get action on the face of AMD
December 9, 2010, 3 H 36
No comments:
Post a Comment