malvertising – Page 5 – WindowsTechs.com

eGobbler infects more than 1 billion ads in worldwide campaign

Posted on October 4, 2019 by Silviu STAHIE

The eGobbler malvertising threat actor has made a return, this time exploiting a WebKit vulnerability used primarily by iPhone’s Safari browser. Security researchers from Confiant estimate up to 1.16 billion impressions have been compromised sinc… Continue reading eGobbler infects more than 1 billion ads in worldwide campaign→

Malvertising Attack Hijacks 1B+ Sessions With Webkit Exploit

Posted on October 1, 2019 by Lindsey O'Donnell

The eGobbler threat actor is back with a new malvertising campaign that has hijacked more than 1 billion sessions. Continue reading Malvertising Attack Hijacks 1B+ Sessions With Webkit Exploit→

Over A Billion Malicious Ad Impressions Exploit WebKit Flaw to Target Apple Users

Posted on October 1, 2019 by Unknown

The infamous eGobbler hacking group that surfaced online earlier this year with massive malvertising campaigns has now been caught running a new campaign exploiting two browser vulnerabilities to show intrusive pop-up ads and forcefully redirect users … Continue reading Over A Billion Malicious Ad Impressions Exploit WebKit Flaw to Target Apple Users→

eGobbler Malvertiser Bypassed Browser Protections Using Obscure Bugs

Posted on September 30, 2019 by David Bisson

A malvertising actor known as “eGobbler” used obscure browser bugs to bypass built-in browser protections and expand the scope of its attacks. Confiant observed eGobbler exploiting the first vulnerability back on April 11, 2019. In that par… Continue reading eGobbler Malvertiser Bypassed Browser Protections Using Obscure Bugs→

WordPress sites hacked through defunct Rich Reviews plugin

Posted on September 26, 2019 by Graham Cluley

An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst of all–malware designed to in… Continue reading WordPress sites hacked through defunct Rich Reviews plugin→

WordPress sites hacked through defunct Rich Reviews plugin

Posted on September 26, 2019 by Graham Cluley

An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst of all–malware de… Continue reading WordPress sites hacked through defunct Rich Reviews plugin→

Unpatched Bug Under Active Attack Threatens WordPress Sites with XSS

Posted on September 25, 2019 by Tara Seals

The issue in the Rich Reviews plugin is being actively exploited. Continue reading Unpatched Bug Under Active Attack Threatens WordPress Sites with XSS→

Old Magecart domains are finding new life in fresh threat campaigns

Posted on September 20, 2019 by Help Net Security

Magecart has so radically changed the threat landscape, victimizing hundreds of thousands of sites and millions of users, that other cybercriminals are building campaigns to monetize their handiwork, a RiskIQ research reveals. These secondary actors kn… Continue reading Old Magecart domains are finding new life in fresh threat campaigns→

WordPress Plugins Anchor Widespread Malvertising, Rogue Backdoor Campaign

Posted on September 3, 2019 by Tara Seals

An ongoing attack on websites has added new exploits and an administrative backdoor to its bag of tricks. Continue reading WordPress Plugins Anchor Widespread Malvertising, Rogue Backdoor Campaign→

Attackers are exploiting vulnerable WP plugins to backdoor sites

Posted on September 3, 2019 by Zeljka Zorz

A group of attackers that has been injecting WordPress-based sites with a script redirecting visitors to malicious and fraudulent pages has now also started backdooring the vulnerable installations, Wordfence’s Mikey Veenstra warns. The attacks T… Continue reading Attackers are exploiting vulnerable WP plugins to backdoor sites→