Likely Malicious ad

Compare New Zealand Broadband plans and prices | Backblaze Cloud backup | AliExpress | MightyApe | Amazon Fire TV | Amazon (Kindle, books, electronics)

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › Geekzone › Likely Malicious ad

alexcc

130 posts

Master Geek
+1 received by user: 17

Topic # 183852 1-Nov-2015 13:21

Send private message

Refreshed a page and got a popup about updating Flash player - Ok Leads directly to a exe hosted on 184.173.28.176.

Flash upgrade

Flash upgrade

Some Screenshots of ads on the page when this occurred

freitasm

BDFL - Memuneh
58742 posts

Uber Geek
+1 received by user: 10138

Administrator

Trusted

Geekzone

Reply # 1418144 1-Nov-2015 13:28

3 people support this post

Send private message

Actually not a malicious ad code, but another third party. Isolated and removed.

Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff) | Backblaze cloud backup (personal and business) | My technology disclosure

alexcc

130 posts

Master Geek
+1 received by user: 17

Reply # 1418147 1-Nov-2015 13:30

Send private message

freitasm: Actually not a malicious ad code, but another third party. Isolated and removed.

Awesome, thanks for the quick action! :)

freitasm

BDFL - Memuneh
58742 posts

Uber Geek
+1 received by user: 10138

Administrator

Trusted

Geekzone

Reply # 1418149 1-Nov-2015 13:54

2 people support this post

Send private message

As I mentioned, a third party CDN account was compromised and I have isolated it. The company has been notified and is working through it to purge cached files

@freitasm we are still working to prevent cached versions of the script from continuing to load.

— PageFair (@Pagefair) November 1, 2015

Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff) | Backblaze cloud backup (personal and business) | My technology disclosure

freitasm

BDFL - Memuneh
58742 posts

Uber Geek
+1 received by user: 10138

Administrator

Trusted

Geekzone

Reply # 1419687 3-Nov-2015 11:50

Send private message

More information here: http://blog.pagefair.com/2015/halloween-security-breach/

Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff) | Backblaze cloud backup (personal and business) | My technology disclosure

gzt

9002 posts

Uber Geek
+1 received by user: 1228

Reply # 1419698 3-Nov-2015 12:03

Send private message

Good to see a no BS explanation from page fair. Insightful question from the bdfl there.

Ragnor

8019 posts

Uber Geek
+1 received by user: 384

Trusted

Reply # 1421075 4-Nov-2015 18:17

Send private message

That's unfortunate for them, handled well but the reputation damage is done.

Using 3rd party services can always extend your site vulnerability like this so better hope they are good.

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:

Follow @geekzonenzforum

Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:

Follow @geekz1

Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:

Follow @geekzoneprices

News »

Symantec protects data everywhere with Information Centric Security
Posted 21-Sep-2017 15:33

FUJIFILM introduces X-E3 mirrorless camera with wireless connectivity
Posted 18-Sep-2017 13:53

Vodafone announces new plans with bigger data bundles
Posted 15-Sep-2017 10:51

Skinny launches phone with support for te reo Maori
Posted 14-Sep-2017 08:39

If Vodafone dropping mail worries you, you’re doing online wrong
Posted 11-Sep-2017 13:54

Vodafone New Zealand deploy live 400 gigabit system
Posted 11-Sep-2017 11:07

OPPO camera phones now available at PB Tech
Posted 11-Sep-2017 09:56

Norton Wi-Fi Privacy — Easy, flawed VPN
Posted 11-Sep-2017 09:48

Lenovo reveals new ThinkPad A Series
Posted 8-Sep-2017 14:37

Huawei passes Apple for the first time to capture the second spot globally
Posted 8-Sep-2017 10:45

Vodafone initiative enhances te reo Maori pronunciation on Google Maps
Posted 8-Sep-2017 10:40

Voyager Internet expand local internet phone services company with Conversant acquisition
Posted 6-Sep-2017 18:27

NOW Expands in to Tauranga
Posted 5-Sep-2017 18:16

Windows 10 Fall Creators Update coming Oct. 17
Posted 4-Sep-2017 14:10

Garmin introduce Garmin vivoactive 3
Posted 1-Sep-2017 18:38

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.

RSS feeds: Main feed; Forums feed; All RSS feeds

Site features: Geekzone Mobile; Geekzone Badges; Geekzone Slack channel; Geekzone on Twitter; Geekzone Dashboard

Geekzone offers: Switch your broadband with Geekzone; Amazon orders (Kindle, books, everything); MightyApe orders; Payoneer card

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising on Geekzone; Trademark and copyright

©2002-2017 Geekzone®