Table Of Contents
YouTube Ads lead to exploit kits, YouTube serving malvertising?
You may have heard of the term malvertising and threats posed by it.
Malvertising is usually served by hackers using shady sites or hacking legitimate ones to spread malware payload.
This ads lead users to exploit kits which can steal their identity, personal information or banking details.
TrendMicro has been researching on malvertising trends for past few months and have come to this surprising conclusion.
TrendMicros state,
The ads weve observed do not directly lead to malicious sites from YouTube.
What is Malvertising
How was YouTube used?
to make their activity look legitimate, the attackers used the modified DNS information of a Polish government site.
TrendMicro is unclear as to how the hackers achieved this.
TrendMicro noticed that exploit kit used in YouTube malvertising attack was the Sweet Orange exploit kit.
Further the, the behavior of these payloads are identical.
The websites that TROJ_KOVTER.SM accesses to display the fake warning messages are no longer accessible.
Those users who have updated IE, Java, and Adobe are safe from this attack.
TrendMicro has already notified Google and hopefully Google will take actions against the malvertisers soon.
Resource :TrendMicro Labs
Read More
source: www.techworm.net
