Hackers hack ad servers and lure victims to infected websites

[ad_1]

Hackers have continued to attract attention during these times as they appear to have used new strategies to carry out their bad activities.

Cyber ​​security company Confiant has exposed the operation of a mysterious group of hackers who break into ad servers with the sole intention of serving malicious ads directly from the networks.

Hack

A new method of direct hacking

The group of hackers found a bug in the old Revive ad servers that allowed them to break into the networks running on the server. Once they have access, they attach malicious code to existing ads and see how the ads unfold. Revive is an open source ad server system that has been in operation for over a decade.

As soon as an infected ad enters legitimate websites, the code immediately redirects website visitors to websites loaded with files infected with malware. These files are usually disguised as updates for Adobe Flash Player.

Confiant said it noticed the trend last August and the number of occurrences has only increased since then. The hacker group that called Confiant Tar Barnakle infected at least 60 old Revive servers. Tag Barnakle has loaded his malicious ads on thousands of websites.

Trusted investigator Eliya Stein noted:

“When we look at the volumes behind one of the compromised RTB ad servers, we see peaks up to 1.25 [millón] of ad impressions affected in a single day. »

Confiant also notes that Tar Barnakle’s operating format is a minor violation of the standard. Most illegal advertising companies create fake companies and buy ads on legitimate websites, which will change the ad codes in the future. These companies sometimes also have the help of shady ad networks that they have activated in the past. However, Tar Barnakle attacks ad servers directly.

Phishing and malware attacks continue to increase

The report encounters a wave of new concerns about the spread of fraud and cyber attacks in the United States and several other developed countries. Hackers lurked after the corona virus and intensified their attacks considerably.

Phishing

At the moment, phishing and malware attacks appear to be the most popular methods used by these hackers.

Microsoft’s Security Intelligence team announced one earlier this week warning Users should be aware of the new “trickbot” malware that has taken advantage of the pandemic.

According to researchers, hackers pose as the “US Volunteer Organization” and the “US Humanitarian Group” and send phishing emails disguised as coronavirus test information. Each email contains an attachment that attempts to release the Trickbot malware on the victim’s computer. Researchers too they warned Various phishing campaigns have used telework to encourage victims to share their personal and financial information.



Do you use telegram? Join the Telegram trading community to get exclusive buy and sell signals for cryptocurrencies, educational content, discussions and project analysis!

Join the Cryptocurrency group on Facebook to comment on the latest news, share the best blockchain projects and trading signals, and win the market

Disclaimer of liability. Read moreRead less

As a leading blockchain and fintech news company, BeInCrypto always strives to comply with strict editorial guidelines and the highest journalistic standards. With this in mind, we always encourage and encourage readers to do their own research into the information contained in this article. This article is intended as news and is for informational purposes only. The topic of the article and the information provided may have an impact on the value of a digital or cryptocurrency asset, but is never intended. Likewise, the content of the article and the information contained therein do not intend and do not intend to provide sufficient information for a financial or investment decision. This article is not specifically intended as financial advice, it is not financial advice and should not be construed as financial advice. The content and information in this article have not been prepared by a certified financial professional. All readers should always conduct their own due diligence with a certified financial professional before making an investment decision. The author of this article may have any amount of Bitcoin, cryptocurrencies, other digital currencies, or financial instruments at the time of writing, including but not limited to those contained in the content of this article.



[ad_2]

Add Comment

Your email address will not be published. Required fields are marked *

I accept the Terms and Conditions and the Privacy Policy