Friday, January 15, 18:22
Home security Pornsites: Users become infected with malware from malicious ads

Pornsites: Users become infected with malware from malicious ads

A cybercrime group has been posting malicious ads on pornsites in recent months to redirect users to another website and infect them with malware.

The group called Malsmoke has operated on a very high scale compared to other similar groups and has violated "too many pornsites".

Security company Malwarebytes, which monitors Malsmoke attacks, says that most of the time, the group manages to place malicious ads on not-so-well-known porn sites, but recently "hit the jackpot" when they did the same on xHamster, one of the largest erotic video portals and one of the largest websites on the internet, with billions of visitors every month.

pornsites malware erotic content site
Pornsites: Users are attacked by malware

The role of the group's malicious ads was to use misleading JavaScript and redirect users from the erotic content site to a malicious site hosting an exploitation kit.

Then, exploit kits used vulnerabilities in Adobe Flash Player or him Internet Explorer to install malware on the user's computers, with the most common payloads being Smoke Loader, the Raccoon Stealer and ZLoader.

Of course, only users who still use Internet Explorer or Adobe Flash have been the target of these malicious ads.

Attacks can be seen as a last resort to infect users with old school hacking tools, such as exploit kits, whose use has declined in recent years as modern browsers have become more difficult to hack.

Most exploit kits are built for vulnerabilities in Flash and Internet Explorer, which has made them less effective as most Internet users have now removed Flash or moved to Chrome and Firefox.

With Flash scheduled to end its life cycle (EOL) by the end of the year, and Internet Explorer being phased out by Microsoft, these are the last few months that attackers still rely on exploitation kits.

"Despite recommendations from Microsoft and security professionals, we can only find that there are still many users (consumers and businesses) worldwide who have not yet switched to a more modern and fully supported browser," Malwarebytes said in a report. published earlier this week.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehchttps://www.secnews.gr
Be the limited edition.

LIVE NEWS

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...
00:02:36

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...

What are the best and most affordable 5G phones for 2021

The market will soon be flooded with mid-range 5G devices. Everything that happens will be really exciting: you will be able to ...

Verified Twitter accounts in a cryptocurrency scam with the name of Elon Musk violated!

Lately, hackers have been violating verified Twitter accounts in a cryptocurrency giveaway scam, in which the name of the CEO is used ...

Classiscam: Fraudsters "fake" brands and deceive users of European markets!

Dozens of criminal gangs publish fake ads in popular online markets, to attract unsuspecting users to "fraudulent" commercial sites or phishing ...

iOS 14.4: Displays a notification for repairs with non-genuine cameras

Starting with the iPhone 11, Apple has added a notification to iOS that tells the user when the device has a ...

Facebook: Sues Chrome extensions developers for data theft

Facebook has filed a lawsuit against two Portuguese nationals for developing Chrome extensions that collected data from Facebook users.