Banner ads next stop for hackers

By

Banner advertising is being used to deliver the Bofra worm to visitors of European websites. Users of a number of high profile sites will find that clicking on banner ads redirects them to websites that exploit an unpatched flaw in Internet Explorer.

"It seems that the hackers are getting bolder," said Joe Stewart, senior security researcher at consultants LURHQ. "Traditionally it has been much more low-key, but I guess that wasn't good enough for them."


Once infected the user's computer will be attacked by a combination of viruses, trojan horses and spam.

The Bofra worm appeared only four days after the Internet Explorer flaw was reported. It affects all Windows platforms except those using Service Park 2 (SP2) - an update that is yet to be installed on thousands of computers due to its incompatibility with some software.

Banner based exploits first appeared earlier this year. An adware Trojan known as Virtumode makes popups appear that are related to whatever the user has been searching for on a browser. As Stewart wrote in his description of the exploit, a user visiting a page with keywords related to travel would suddenly find relevant adware appearing on their computer.

But Stewart claimed that users shouldn't be overly concerned. "This isn't going to spread that quickly. It doesn't travel in the right way to be huge menace. We aren't going to see another Sasser or Blaster," he said.

www.lurhq.com/iframeads.html

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
bannerforhackersnextsecuritystop

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?