Sécurité en ligne :

Dragon Hacks: Slay Browser Ads

https://firewallsdontstopdragons.com/dragon-hacks-slay-browser-ads/

A large-scale malvertising campaign using GitHub as a primary attack vector has infected nearly one million devices worldwide, Microsoft has revealed.

https://www.computing.co.uk/news/2025/security/github-hosted-malware-infects-a-million-devices

A deep dive into one of the largest malvertising attacks, affecting over 1 million devices. Learn how cybercriminals exploit ad networks, the risks to users, and how to protect yourself. Tune in now!

#CyberSecurity #Malvertising #OnlineSafety #Hacking #TechNews #PrivacyMatters

https://podcasts.apple.com/us/podcast/1-million-devices-hit-inside-the-massive-malvertising/id1794865096?i=1000698286408

Nearly 1 million #Windows devices targeted in advanced “malvertising” spree
#malvertising #advertising #security #privacy

https://arstechnica.com/security/2025/03/nearly-1-million-windows-devices-targeted-in-advanced-malvertising-spree/

#Microsoft says #malvertising campaign impacted 1 million PCs

https://www.bleepingcomputer.com/news/security/microsoft-says-malvertising-campaign-impacted-1-million-pcs/

Cascading Redirects: Unmasking a Multi-Site JavaScript Malware Campaign

A recent investigation uncovered a malicious JavaScript injection affecting WordPress websites, redirecting visitors to unwanted third-party domains. The attack vector involves a two-stage redirection process, injecting code into theme files and loading external scripts. The malware creates hidden elements to force redirects, potentially leading to phishing pages, malvertising, exploit kits, or scam sites. At least 31 infected websites were identified, with domains like awards2today[.]top and chilsihooveek[.]net involved. The infection methods include compromised admin accounts, exploited vulnerabilities, inadequate file permissions, and hidden PHP backdoors. Impacts include traffic loss, reputation damage, SEO blacklisting, and risks of further infections. Detection involves inspecting network activity and file modifications, while prevention measures include regular security audits, updates, strong passwords, and web application firewalls.

Pulse ID: 67ca751fcb0a0f73661e1ad4
Pulse Link: https://otx.alienvault.com/pulse/67ca751fcb0a0f73661e1ad4
Pulse Author: AlienVault
Created: 2025-03-07 04:25:03

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

Microsoft Uncovers Malvertising Campaign Affecting 1 Million PCs: A Deep Dive into the Attack

A recent report from Microsoft reveals a sophisticated malvertising campaign that has compromised nearly one million devices globally. This article explores the technical intricacies of the attack, it...

https://news.lavx.hu/article/microsoft-uncovers-malvertising-campaign-affecting-1-million-pcs-a-deep-dive-into-the-attack

Our latest Cyber Insights for H2 2024 is live!

https://www.quad9.net/news/blog/trends-h2-2024-cyber-insights

Have you ever wondered what happens if you say yes to every request to receive push notifications from sketchy websites?
For the past few months we have done exactly that, exposing an old phone to an endless barrage of scareware and malicious ads.
Find out more here: https://blogs.infoblox.com/threat-intelligence/pushed-down-the-rabbit-hole/

#dns #threatintel #adtech #adware #malware #scam #phishing #cybercrime #cybersecurity #vextrio #infoblox #infobloxthreatintel #malvertising #tds

Cricket and Matt asked me to join them for the Ask Mr DNS podcast last week. It's a great show that i've listened to for years.

We talked about securing networks by blocking bad things in DNS and how our research group @InfobloxThreatIntel does that work. I talk a bit about malicious adtech like #VexTrio ....

This whole show is completely unrehearsed and i had no real idea what we were going to cover lol... so fingers crossed it makes sense to folks.

There are some great episodes about the Dyn attacks in 2015 that you should listen to if you have an interest in DDOS attacks.

#threatintel #dns #cybercrime #cybersecurity #infosec #infoblox #phishing #malware #malvertising

https://ask-mrdns.com/2025/01/episode-64/

El lado del mal - Fake Brokers y Melendi en los anuncios de los ciberestafadores en Internet https://www.elladodelmal.com/2025/01/fake-brokers-y-melendi-en-los-anuncios.html #fakebrokers #ciberestafa #criptomonedas #phishing #fakenews #BitCoin #Twitter #X #Malvertising

Fake #Homebrew #Google ads target #Mac users with #malware

https://www.bleepingcomputer.com/news/security/fake-homebrew-google-ads-target-mac-users-with-malware/

Malicious Google Ads Exploit Homebrew to Distribute AmosStealer Malware

A recent surge in malicious Google ads has targeted Homebrew users, redirecting them to a fake website that installs the notorious AmosStealer malware. This campaign highlights the persistent vulnerab...

https://news.lavx.hu/article/malicious-google-ads-exploit-homebrew-to-distribute-amosstealer-malware

Phishing at Scale: Hackers Exploit Google Ads to Steal Accounts

In a shocking twist of irony, cybercriminals are leveraging Google Search ads to launch sophisticated phishing attacks that target Google Ads accounts. This unprecedented malvertising operation not on...

https://news.lavx.hu/article/phishing-at-scale-hackers-exploit-google-ads-to-steal-accounts