Malvertising Attack Hits Yahoo! Ad Network

Discussion in 'malware problems & news' started by ronjor, Aug 4, 2015.

  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,802
    Location:
    Texas
    . http://www.securityweek.com/malvertising-attack-hits-yahoo-ad-network
     
  2. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,989
    Location:
    Brasil
    I wonder... do they not verify the ads before publishing them?
     
  3. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,802
    Location:
    Texas
    ."https://en.wikipedia.org/wiki/Malvertising
     
  4. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,989
    Location:
    Brasil
    Thanks!

    I don't see how Yahoo! can give them a trust-pass to change the ads in any way they want. All modifications should be under investigation.
     
  5. Coldmoon

    Coldmoon Returnil Moderator

    Joined:
    Sep 18, 2006
    Posts:
    2,981
    Location:
    USA
    That isn't the way it works as the ad aggregator is the one that cycles the ads and not (the site) or the ad originator. The ad aggregator sells slots in their specific rotation where the ads will be inserted in whatever frequency has been paid for by the ad originator. The malvertiser then gets a small set of compromised advertisements into the rotation so it is that much harder to stop or filter malicious ads at the site.
     
  6. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,989
    Location:
    Brasil
    Thank you, Coldmoon, I'm starting to have an idea now. I really didn't read a page of how ads are managed.
     
  7. PallMall

    PallMall Guest

    Malvertizement : the beat goes on.
    It's not only a matter of nervous breakdowns when users discover the Web without any anti-ad blocker, it's also that darn malvertizement uninvited guest which pops in you never know when. Better advertizement (lesser in quantity, better in quality, respectful of their aims as of their targets) and free of parasites, on the Web as everywhere would lead many users to reconsider their anti-ad approach. The problem is in the hands of the advertisers, not in ours. So : start being efficient which means less income for you, advertisers, but a greater efficiency for the companies since users are likely to reconsider a smile when it comes to true advertisement, that is : information and not elliptic tangents.
     
  8. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,802
    Location:
    Texas
  9. RCGuy

    RCGuy Registered Member

    Joined:
    Aug 7, 2005
    Posts:
    541
    Actually, I've heard about this sort of problem with Yahoo and advertisements years ago. However, I had thought that Yahoo had taken care of the problem. But apparently, that only applied to back then.

    Also, recently(although, I'm not sure if it's been as far back as 7 days before 08/03), I've logged into my Yahoo email account on IE(which for some reason no longer provides Adblock Plus control) and logged into other sites from Yahoo's email replies(e.g. amazon.com) because it's a pain having to log in on Firefox with NoScript and having to click on NoScript's 'Option' button 6 or 7 or 8 times(or more) until some sites are functional. :ouch:

    But in saying all that, I've noticed that Yahoo has been actually putting mini-movies on their log-in page, which seem a bit scary(security wise) to me. But since I no longer have control of IE's Adblock Plus, I can't block the mini-movies.

    May God bless Microsoft. :rolleyes: And Yahoo too. :rolleyes:
     
Loading...