xbiz world
xbiz premiere

Euro Websites Broadcast Trojan in Banner Ads

CYBERSPACE — A string of European websites transmitted malicious code to visitors over the course of approximately six hours this weekend after banner ads and advertising servers became infected with Bofra/IFrame code exploits, according to SANS Institute’s Internet Storm Center.

The problem was eventually traced back to the third-party advertising server Falk AG, which transmits advertising to websites that include The Register, NBC Universal, The Golf Channel and A&E Networks.

Also affected was NU.nl, the Netherlands’ largest news website with over 450,000 visitors each month.

According to Falk, the problem started around 6:10 p.m. GMT, when the company experienced an attack on one of its load balancers. Designed to evenly distribute requests to multiple servers, the balancer began to distribute about every 30th request to search.comedycentral.com, a compromised website that contained the Bofra/IFrame exploit.

“The purpose of the exploit was to establish a redirect to malicious code through a javascript component of Falk’s ad delivery,” Falk told its customers. The total amount of redirects were only 2 percent of EU ad requests, the company said.

LURHQ Threat Intelligence Group reported that at least two different Trojans were being installed by during the six hours that the compromised advertisements were being served. Infamous adware Trojan Virtumonde and backdoor downloader Trojan.Agent.EC were both fingered in the attacks.

Both programs use the IFrame exploit, discovered in late October and applicable to all Windows platforms except Windows XP Service Pack 2.

Copyright © 2024 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Streamate Spotlights Savannah Sly as December 'Elevate' Community Partner

Streamate has selected New Moon Network founder and co-director Savannah Sly as its Elevate Community Partner for December.

LaBellaDX Launches New Site Through YourPaysitePartner

Content creator LaBellaDX has launched her new official website through YourPaysitePartner (YPP).

Clip Page Launches 'Creator Analytics' Feature

Custom content marketplace Clip Page has launched the Creator Analytics feature on its platform.

BBWXXXAdventures Relaunches Through Grooby's Blue.xxx

Paysite BBWXXXAdventures has relaunched under Grooby's new website management company Blue.xxx.

Flirt4Free Announces 'Tease the Season' Holiday Contest

Flirt4Free has announced its Tease the Season promo and model contest, which will run Dec. 21-25.The competition is led by the return of the Snowflake Contest, where models can be gifted digital snowflakes by their fans. The models who collect the most snowflakes by 11:59 a.m. on Christmas Day will win cash prizes.

SWR Data Publishes 2024 'Top Creator Platforms' Report

Adult industry market research firm SWR Data has published a report on the Top Creator Platforms of 2024.

MintStars Joins Pineapple Support as Supporter-Level Sponsor

Content platform MintStars has joined the ranks of over 60 adult businesses and organizations committing funds and resources to Pineapple Support.

Politicians Aim to Study Effects of FOSTA-SESTA on Sex Workers

In an encouraging sign for sex workers, California State Representative Ro Khanna and U.S. Senator Elizabeth Warren of Massachusetts have reintroduced the SAFE SEX Workers Study Act, which aims to study the effects of FOSTA-SESTA.

Pornhub to Shut Down Access in Florida Over Age Verification

Aylo will geoblock Pornhub across Florida starting Jan. 1, when HB 3, the state's age verification law, goes into effect.

AEBN Publishes Popular Searches by Country for October, November

AEBN has released the list of popular searches from its straight and gay theaters by country in October and November.

Show More