Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Results 1 to 5 of 5
    Like Tree1Likes
    • 1 Post By Hedgehog1979

    Millions of visitors to Yahoo.com hit by huge malware attack

    This is a discussion on Millions of visitors to Yahoo.com hit by huge malware attack within the General Computing and Internet forums, part of the Community channel category; Millions of visitors to Yahoo.com hit by huge malware attack | Mail Online Ads from Yahoo are redirecting users to ...

    1. #1
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,257
      Thanks
      849
      Thanked 2,247 Times in 2,108 Posts

      Millions of visitors to Yahoo.com hit by huge malware attack

      Millions of visitors to Yahoo.com hit by huge malware attack | Mail Online
      • Ads from Yahoo are redirecting users to sites that install a host of different malware
      • IT security firm Fox IT estimates that up to 29,000 computers per hour were affected
      • Yahoo says it is aware of the problem and working to fix it


      Visitors to Yahoo.com over the past week may have been affected by malware coming from the site's ads.

      According to online security firm Fox IT based in the Netherlands, users who clicked on ads from the site were redirected to sites that exploited vulnerabilities in Java and installed a host of different malware.

      'Clients visiting yahoo.com received advertisements served by ads.yahoo.com,' the internet security firm posted on its blog. 'Some of the advertisements are malicious.'

      Fox IT estimates tens of thousands of users were affected per hour.

      'Given a typical infection rate of 9%, this would result in around 27,000 infections every hour,' the company said.

      'Based on the same sample, the countries most affected by the exploit kit are Romania, Great Britain and France. At this time it's unclear why those countries are most affected, it is likely due to the configuration of the malicious advertisements on Yahoo.'

      Yahoo has issued a statement about the security breach:

      'At Yahoo, we take the safety and privacy of our users seriously,' it said in a statement Saturday night.

      Fox IT was unable to identify those responsible for the attack but says it was 'clearly financially motivated.'

      The firm provides details on how to prevent the malware accessing your computer by blocking IP addresses of the malicious ads and the exploit kit.
      Computers connected to a network can spread the malware onto many more computers.

      The malware may have begun spreading from December 30.
      Yahoo says it is monitoring the problem.

      'We recently identified an ad designed to spread malware to some of our users. We immediately removed it and will continue to monitor and block any ads being used for this activity.'

      (Please click the link above to see some screen dumps illustrating this article)


    2. Advertisement
    3. #2
      Hedgehog1979's Avatar
      Hedgehog1979 is offline Sky User Member
      Exchange: 01506
      Broadband ISP: Sky Fibre Unlimited Pro
      Router: Sky Hub SR102
      Sky TV: Sky+HDw box X2
      Join Date
      Mar 2013
      Location
      Livingston
      Posts
      298
      Thanks
      0
      Thanked 32 Times in 31 Posts

      Millions of visitors to Yahoo.com hit by huge malware attack

      I'm pretty sure my better half's father has been affected by this. He said his avast had popped up saying something had taken over his browser, his words not mine.

      I had already seen the article above so I asked him if he uses the the yahoo website and he does so I asked him if he clicked on any of the ads to which he replied ah emm no I don't think so, I believe he has .

      Told him to scan his laptop and to bring it down if anything on his browser looks funny or if any of the search results look dodgy.


      Sent from my iPad using Tapatalk HD
      gymno likes this.

    4. #3
      gymno's Avatar
      gymno Guest
      Exchange:
      Broadband ISP:
      Router:
      Sky TV:

      Re: Millions of visitors to Yahoo.com hit by huge malware attack

      My parents aren't even online & i'm always going on about how they should be.

      Sometimes i'm glad though.

    5. #4
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,257
      Thanks
      849
      Thanked 2,247 Times in 2,108 Posts

      Re: Millions of visitors to Yahoo.com hit by huge malware attack

      I think that someone's head will be rolling off their shoulders tomorrow morning.

      With all the other issues which Yahoo! is going through at the present time, this really is going to cost Yahoo! a huge amount of respect.

      In the mean time I would encourage everyone to ensure that they install and periodically run some Anti-Malware software. As much as many AV products claim to scan for Malware, they may not all pick up this one.

      PlusNet Fibre since Jan 2021
      Previously Sky Fibre & Sky BB since 2010.

    6. #5
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Other ISP
      Router: Non-Sky Router
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,257
      Thanks
      849
      Thanked 2,247 Times in 2,108 Posts

      Re: Millions of visitors to Yahoo.com hit by huge malware attack

      BBC News - Yahoo malware enslaves PCs to Bitcoin mining
      Adverts on Yahoo's homepage were infected with malware designed to mine the Bitcoin virtual currency, according to security experts.

      Yahoo confirmed that for a four-day period in January, malware was served in ads on its homepage.

      Experts estimate that as many as two million European users could have been hit.

      Security firm Light Cyber said the malware was intended to create a huge network of Bitcoin mining machines.

      "The malware writers put a lot of effort into making it as efficient as possible to utilise the computing power in the best way," Light Cyber's founder Giora Engel told the BBC.

      Lucrative market
      Bitcoin mining malware is designed to steal computing power to make it easier for criminals to accumulate the virtual currency with little effort on their part.

      "Generating bitcoins is basically guessing numbers," said Amichai Shulman, chief technology office of security firm Imperva.

      "The first one to guess the right number gets 25 bitcoins and if you have a large volume of computers guessing in a co-ordinated way then you have a more efficient way of making money," he added.

      Other than a computer running slower, victims will be unaware that their machine is being used in what could become known as a "bitnet".

      It is a variation on the traditional botnet, networks of malware-infected computers used to churn out spam or bombard websites with requests in order to knock them offline.

      Some experts estimate that such networks could be generating as much as $100,000 (60,000) each day.

      Since bitcoins have risen in value - at its peak one bitcoin was worth $1,000 - making it a lucrative market for online criminals.

      "Bitcoin mining malware is the new frontier as criminal gangs look for new ways to make money," said Mr Engel.

      Easy target
      Yahoo acknowledged the attack in a statement earlier this week.

      "From December 31 to January 3 on our European sites, we served some advertisements that did not meet our editorial guidelines - specifically, they spread malware," the statement read.

      It went on to say that users in America, Asia and Latin America weren't affected but did not specify how many European users were victims.

      Fox IT, the Dutch cybersecurity firm which revealed the malware attack, estimates that there were around 27,000 infections every hour the malware was live on the site.

      Over the period of the attack that could mean as many as two million machines were infected.
      Such attacks may be hard to avoid, said Mr Shulman.

      "For an ad platform it is virtually impossible to guarantee 100% malware free ads."

      "There are many independent stakeholders involved in the process of web advertising, so from time to time any ad platform is bound to deliver malware."

     

     

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2020. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION