Yahoo ads were infected with malware for nearly a week before anyone noticed
For nearly a week, nobody from Yahoo noticed that its banner ads were inflicting people’s computers with malware. The New York Times eeports that hackers infiltrated banner ads on Yahoo’s ad network using an Adobe Flash vulnerability beginning on July 28 until yesterday.
Researchers from security firm Malwarebytes said that the hackers bought ads on Yahoo’s family of highly trafficked websites, like news and sports, and targeted Windows users using older versions of Adobe Flash. Then, a malicious malware code was automatically downloaded to their desktops that was used to remotely control the computer, like locking people out until they paid the hackers.
More frighteningly, the code didn’t require users to even interact with the ad, rather they could get infected was by simply browsing the page. It’s unclear how many people were affected. It’s extremely embarrassing for Yahoo, whose homepage garners 6.9 billion views each month with its subset of news, entertainment and sports verticals collecting hundreds of millions of visits.
After Malwarebytes alerted Yahoo, the company fixed the issue.
“Unfortunately, disruptive ad behavior affects the entire tech industry,” it said in a statement to the blog. “Yahoo has a long history of engagement on this issue and is committed to working with our peers to create a secure advertising experience.”
The recently-discovered vulnerability only adds to the chorus of calls telling tech companies to dump Flash because of its weak security protocols. Firefox said last month it will block Flash from its browsers.
“Right now, the bad guys are really enjoying this,” Jérôme Segura, a security analyst from Malwarebytes told the Times. “Flash for them was a godsend.”
Perhaps native ads really are the wave of the future.
‘There was nowhere to air it’: Why a CBD brand is leveraging digital video as part of its ad strategy
Two years after the Farm Bill legalized hemp, CBD brand Sagely Naturals is adding video advertising to its marketing strategy.
Consultancy businesses tried to promise they’d upstage agencies — it hasn’t really worked like that
So far this year there has been about $15 billion dollars worth of media billings by advertisers to marketing services businesses — none of which has gone to consulting firms.
Member ExclusiveDigiday+ Research: The future of agency work is remote(ish)
The share of agency professionals who said they do not want to return to full-time office work has risen by more than 40% this year.
SponsoredMarketer’s playbook: Delivering performance alongside privacy
Jonathan Meltzer, director of marketing, ads privacy, platforms and measurement, Google One way to prepare any business for what’s next in 2021 and 2022 is to invest in data and insights. However, shifts in consumer expectations challenge even the most experienced marketing team to find safer ways to show people ads and measure campaigns. To […]
How esports org 100 Thieves will boost its M&A strategy with $60M in Series C funding
As esports organizations expand their offerings in search of a cohesive and profitable business model, the acquisition of new companies can help bring in fresh ideas and unique revenue streams.
‘Brands have really taken note of this interest’: How Sanctuary is partnering with brands as Gen Z, millennials seek out astrology content
This year, brands like McCormack, Venmo, Away, Benjamin Moore and Le Creuset have worked with Sanctuary to create custom branded content -- matching paint colors, spending habits or cookware to specific astrology signs, for example -- that’s then posted on Sanctuary’s Instagram page.