5 matches found
Associated Press, ESPN, CBS among top sites serving fake virus alerts
ScamClub is a threat actor whos been involved in malvertising activities since 2018. Chances are you probably ran into one of their online scams on your mobile device. Confiant, the firm that has tracked ScamClub for years, released a comprehensive report in September while also disrupting their...
Malvertising: Online advertising's darker side
By Nick Biasini, Chris Neal and Matt Valites. Executive summary One of the trickiest challenges enterprises face is managing the balance between aggressively blocking malicious advertisements aka malvertising and allowing content to remain online, accessible for the average user. The days of...
Twitter Leaks Apple iOS Users' Location Data to Ad Partner
Twitter has disclosed a security bug in its platform that it said inadvertently leaked iOS users’ location data. The Twitter for iOS bug leaked location data at the ZIP code or city level, according to the social media company’s announcement on Monday. Twitter stressed that it has fixed the bug,...
Interactive Advertising Bureau OpenRTB Design Flaw Vulnerability
Interactive Advertising Bureau IAB OpenRTB is an open source real-time bidding system advertising industry. A security vulnerability exists in the implementation of the protocol in IAB OpenRTB version 2.3. A remote attacker could exploit the vulnerability to cancel the status of an advertisement...
Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain
Over the last few months, we have been keeping an eye on the Magnitude exploit kit which is mainly used to deliver the Cerber ransomware to specific countries in Asia. Our telemetry shows that South Korea is most impacted via ongoing malvertising campaigns. When a visitor goes to a website that...