Yahoo ads were infected with malware for nearly a week before anyone noticed
For nearly a week, nobody from Yahoo noticed that its banner ads were inflicting people’s computers with malware. The New York Times eeports that hackers infiltrated banner ads on Yahoo’s ad network using an Adobe Flash vulnerability beginning on July 28 until yesterday.
Researchers from security firm Malwarebytes said that the hackers bought ads on Yahoo’s family of highly trafficked websites, like news and sports, and targeted Windows users using older versions of Adobe Flash. Then, a malicious malware code was automatically downloaded to their desktops that was used to remotely control the computer, like locking people out until they paid the hackers.
More frighteningly, the code didn’t require users to even interact with the ad, rather they could get infected was by simply browsing the page. It’s unclear how many people were affected. It’s extremely embarrassing for Yahoo, whose homepage garners 6.9 billion views each month with its subset of news, entertainment and sports verticals collecting hundreds of millions of visits.
After Malwarebytes alerted Yahoo, the company fixed the issue.
“Unfortunately, disruptive ad behavior affects the entire tech industry,” it said in a statement to the blog. “Yahoo has a long history of engagement on this issue and is committed to working with our peers to create a secure advertising experience.”
The recently-discovered vulnerability only adds to the chorus of calls telling tech companies to dump Flash because of its weak security protocols. Firefox said last month it will block Flash from its browsers.
“Right now, the bad guys are really enjoying this,” Jérôme Segura, a security analyst from Malwarebytes told the Times. “Flash for them was a godsend.”
Perhaps native ads really are the wave of the future.
‘Influencer deals are being paused’: As Facebook boycott begins in earnest, influencer marketing feels a sting
The latest move to pause influencer marketing comes as marketers are not only reconsidering where their ads appear and the kind of content they appear next to, but as they work to figure out how they can better support Black creators and Black-owned businesses following the Black Lives Matter (BLM) protests.
As Facebook boycott continues, here’s a look at what major marketers were spending on Facebook and Instagram
To get a sense of how much advertisers are pulling back from Facebook, Digiday reached out to ad-tracking firm Pathmatics. The company provided estimates for how much advertisers spent on the platform during July 2019 as well as from July 2019 to 2020.
Member Exclusive‘Performative posting’: As agencies share their equality values online, staffers say they have to do much more for Black employees than post
Agency employees and execs say agencies need to do more than make statements to be better for Black employees.
SponsoredFour ways to adapt to the changing publisher ecosystem in 2020
By Neal Sinno, general manager Americas at GeoEdge For marketers, 2020 started out with so much promise — but this changed rapidly as the industry faced a global epidemic head-on. Not only did our own daily routines come to a screeching halt, for many of us our professional lives did as well. Almost as quickly […]
‘Don’t want to piss off customers’: With manufacturing and exporting snarled, some DTC brands are adapting their advertising
Media buyers say that supply chain hiccups have caused them to pause or significantly reduce media spending anywhere from two weeks to five weeks for some DTC brands low on product inventory.
Beyond remote work: Bringing serendipity back to the office
This article is part of the Future of Work briefing, a weekly email with stories, interviews, trends and links about how work, workplaces and workforces are changing. Sign up here. Kai Micah Mills had been working in a different state from his work partner for years. More recently, though, his partner, Ben Adamsky, made the move […]