Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsGeekzoneLikely Malicious ad
alexcc

154 posts

Master Geek
+1 received by user: 17


#183852 1-Nov-2015 13:21
Send private message

Refreshed a page and got a popup about updating Flash player - Ok Leads directly to a exe hosted on 184.173.28.176.

Flash upgrade

Some Screenshots of ads on the page when this occurred

Filter this topic showing only the reply marked as answer Create new topic
freitasm
BDFL - Memuneh
80647 posts

Uber Geek
+1 received by user: 41030

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1418144 1-Nov-2015 13:28
Send private message

Actually not a malicious ad code, but another third party. Isolated and removed.




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 



alexcc

154 posts

Master Geek
+1 received by user: 17


  #1418147 1-Nov-2015 13:30
Send private message

freitasm: Actually not a malicious ad code, but another third party. Isolated and removed.



Awesome, thanks for the quick action! :)

freitasm
BDFL - Memuneh
80647 posts

Uber Geek
+1 received by user: 41030

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1418149 1-Nov-2015 13:54
Send private message

As I mentioned, a third party CDN account was compromised and I have isolated it. The company has been notified and is working through it to purge cached files

 

 




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 



freitasm
BDFL - Memuneh
80647 posts

Uber Geek
+1 received by user: 41030

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #1419687 3-Nov-2015 11:50
Send private message

More information here: http://blog.pagefair.com/2015/halloween-security-breach/ 




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

gzt

gzt
18679 posts

Uber Geek
+1 received by user: 7810

Lifetime subscriber

  #1419698 3-Nov-2015 12:03
Send private message

Good to see a no BS explanation from page fair. Insightful question from the bdfl there.

Ragnor
8279 posts

Uber Geek
+1 received by user: 585

Trusted

  #1421075 4-Nov-2015 18:17
Send private message

That's unfortunate for them, handled well but the reputation damage is done.

Using 3rd party services can always extend your site vulnerability like this so better hope they are good.

Filter this topic showing only the reply marked as answer Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright