All the latest UK technology news, reviews and analysis
|
|
|
31 Jan 2008
Malicious banner ads have been uncovered on travel site Expedia and music service Rhapsody.
Security firm Trend Micro said that the ads appeared as Flash media-format files on the sites.
Users clicking on the ads were redirected to malicious sites which then attempted to install a rogue anti-spyware application.
A spokesperson for Rhapsody owner RealNetworks told vnunet.com that it had first received reports of the ads on 20 January.
The company conducted its own investigation and the malicious files had been removed by 24 January.
The malicious Expedia ads, which advertised a music download service, were disclosed on 28 January by Australian spyware researcher Sandi Hardmeir, who notified the company immediately.
An Expedia spokesperson told vnunet.com that the ads have been removed, and that the company is investigating how long they were online.
Ad firm DoubleClick fell victim to a similar attack late last year which resulted in malicious ads appearing on official sites belonging to Major League Baseball, National Hockey League and The Economist.
"This provides yet another method for cyber-criminals to effectively spread malicious code and earn illicit profits at the same time," wrote Trend Micro researcher Bernadette Irinco on a company blog.
"There is no doubt that cyber-criminals will continue with their 'malvertising' campaigns, targeting more and more popular sites to 'advertise' their malware."
Ad networks have long been locked in a struggle with the purveyors of malicious software.
Malware dealers often use bait-and-switch tactics, presenting the network with a legitimate ad which is later replaced with a malicious file.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
My multi- national Partner client has charged me exclusively...
Senior IT Operations Engineer -MCSE, IIS7/7.5, SAN, CDN...
I have an urgent requirement for short term contract...
User Interface Developer x 1/2 - Leading Organisation...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
from the ukraine
They would buy an ad from a site in Belgium representing a legit site somewhere else pretending they were an agency.Then with highly obfuscated flash code would do a blacklist check to see it the target company was investigating them, and hand them a blank flash if so. However they scerwed with the wrong company and the FBI has their entire network now. All I have to do is go down the street and throw rocks at adobe for not having a proper CAS model, that let them call functions out of the sandbox.
Posted by: bago 29 Mar 2008