IoT / Yahoo ad network used to spread CryptoWall ransomware
Yahoo ad network used to spread CryptoWall ransomware
4 August 2015
Hackers have taken advantage of Yahoo's billions of monthly hits to spread malicious software to users via its advertising network.
Ads shown on its homepage, as well as its News, Sports, Celebrity, Finance and Games websites may have injected systems with adware or CryptoWall ransomware.
This nasty form of malware encrypts users’ data and demands that they pay cyber criminals a fee to get it back – although even if they pay up there is no guarantee this will happen.
Yahoo has removed the offending ads, which ran between July 28th and August 3rd.
The activity was detected by Malwarebytes, which said in a blog post that it was pleased to report that the search engine had acted swiftly to protect its visitors.
It said the malware and ransomware was delivered via the Angler Exploit Kit.
Researchers called malvertising “a silent killer” because it does not require the user to interact with an advert for the malicious software to be downloaded.
For more on the discovery and Yahoo’s reaction, see the Malwarebytes blog.
Photo © abhisawa (CC BY 2.0). Cropped.
When your business is hit by a cyber attack, how should you respond? Find out this September at the R3 conference in London.