Online Ads Are More Dangerous Than Porn, Cisco Says

← Back to Stories (view on slashdot.org)

Online Ads Are More Dangerous Than Porn, Cisco Says

Posted by samzenpus on Thursday January 31, 2013 @10:36PM from the watch-what-you-click dept.

wiredmikey writes "The popular belief is that security risks increase as the user engages in riskier and shadier behavior online, but that apparently isn't the case, Cisco found in its 2013 Annual Security report. It can be more dangerous to click on an online advertisement than an adult content site these days, according to Cisco. For example, users clicking on online ads were 182 times more likely to wind up getting infected with malware than if they'd surfed over to an adult content site, Cisco said. The highest concentration of online security targets do not target pornography, pharmaceutical, or gambling sites as much as they affect legitimate sites such as search engines, online retailers, and social media. Users are 21 times more likely to get hit with malware from online shopping sites and 27 more times likely with a search engine than if they'd gone to a counterfeit software site, according to Cisco's report (PDF). There is an overwhelming perception that people get compromised for 'going to dumb sites,' Mary Landesman, senior security researcher at Cisco, told SecurityWeek."

22 of 110 comments (clear)

Min score:

Reason:

Sort:

TFA got the probabilities backward by phaunt · 2013-01-31 22:36 · Score: 4, Informative

The summary, and the Security Week article, write that "Users are more 21 times more likely to get hit with malware from online shopping sites than if they'd gone to a counterfeit software site".
Cisco's report says that "Online shopping sites are 21 times more likely to deliver malicious content than counterfeit software sites."
Those statements are not equivalent. Online shopping sites have many more visitors than counterfeit software sites, so they have more opportunity to deliver malware. The same goes for the factor of 27 for search engines.
Also, it's hard to check the factor of 182 for adult sites, since the report doesn't include that number, or in fact even the words "porn" or "adult".
1. Re:TFA got the probabilities backward by phaunt · 2013-01-31 22:40 · Score: 4, Insightful
  
  ...and Slashdot's title for the story that "Online Ads Are More Dangerous Than Porn" takes it still a level further. It's certainly not what Cisco said.
2. Re:TFA got the probabilities backward by Errol+backfiring · 2013-01-31 23:52 · Score: 2
  
  Sure, but it's what we probably wanted to hear.
  Now go tell it to the politicians and mention the children. Maybe the privacy-invading criminals finally get punished. I won't be holding my breath though.
  Appropriate quote from Sir Winston Churchill:
  
  'Statistics are like a drunk with a lamppost, used more for support than illumination.'
  
  --
  Nae king! Nae laird! Nae yurrupiean pressedent! We willna be fooled again!
3. Re:TFA got the probabilities backward by Anonymous Coward · 2013-02-01 00:04 · Score: 4, Interesting
  
  It is exactly what Cisco said see here: http://www.cisco.com/en/US/prod/vpndevc/annual_security_report.html
4. Re:TFA got the probabilities backward by L4t3r4lu5 · 2013-02-01 00:46 · Score: 2
  
  Slashdot "editor" utilises hyperbole in post title in click whore shocker!
  
  More at 11, and tomorrow, and the day after, and the day after that...
  
  --
  Finally had enough. Come see us over at https://soylentnews.org/
5. Re:TFA got the probabilities backward by Ol+Olsoc · 2013-02-01 10:31 · Score: 2
  
  What is your dog in this fight?
  I'll assume that you hit the wrong link, and read something else, so here is from the article:
  
  It can be more dangerous to click on an online advertisement than an adult content site these days, Cisco said in its latest version of the yearly security threat report.
  An adult content website - that's probably porn.
  
  The highest concentration of online security targets do not target pornography, pharmaceutical, or gambling sites as much as they affect legitimate sites such as search engines.....
  Are you going to wordsmith this one> Yeah, it doesn't say "porn". It says "pornography. The section you quoted, below the sentence with pornography in the text, does speak of the counterfeit software site.
  But you know why they used the "counterfeit site metric don't you? Because of the uproar that would ensue if they used actual data from porn surfing. And probably the glut of resumes too.
  
  --
  The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
Re:Risky != Risky??? by GiantMolecularCloud · 2013-01-31 22:57 · Score: 2

You would actually become safer.
Re:Risky != Risky??? by phaunt · 2013-01-31 23:01 · Score: 4, Informative

What Cisco's report actually said is that behaviour often perceived as "safe" (such as online shopping) carries more risk than generally thought.
Why is this even news? by Anonymous Coward · 2013-01-31 23:06 · Score: 4, Insightful

It has been known for a long time that ads are a primary malware vector, this is the reason many sane people block them.
1. Re:Why is this even news? by RR · 2013-02-01 10:31 · Score: 2
  
  It has been known for a long time that ads are a primary malware vector, this is the reason many sane people block them.
  That is not the primary reason why I block ads. I block ads because I can't stand all the dancing, jiggling, flashing, gray overlays, slowdowns, green links, and noises, when I want to read something. If I incidentally block all the ads, well, I don't have the time to make my own ad block list that blocks only the bad ad providers. I tried it before, and I'm not convinced that there are any benign ad services.
  
  --
  Have a nice time.
PAID online porn is safe... by K2tech · 2013-01-31 23:23 · Score: 5, Funny

Well thats what I heard...from a friend...he doesn't have that many accounts...
Thanks Google by Vladius · 2013-01-31 23:36 · Score: 2

I've noticed similar shadyness with Google ads and just about all "sponsored content" you see on websites. You see the bullshit tags like "Doctors angered at woman's self treatment" or links to sites that seem to do nothing more than try to scare you to invest. The internet is full of bullshit. Somehow, for some reason Google is one of the richest companies in the world because of it. I'd like to know, who actually clicks on this shit.
1. Re:Thanks Google by History's+Coming+To · 2013-02-01 00:16 · Score: 5, Interesting
  
  Did you check out Google's information on government/police/court requests for info and takedowns in the UK? Around 4,000 incidents in total, and over 2,000 of them were regarding AdWords. Not Youtube, or Blogger, or G+ or Google Pages, but AdWords. Looks like they're well aware of the problems, to the point of government agencies taking regular action over it. Thing is, this is the thing that makes them an enormous amount of money...
  
  Full breakdowns by country here
  
  --
  Please consider this account deleted, I just can't be bothered with the spam anymore.
This is why I block ads by jbmartin6 · 2013-02-01 01:44 · Score: 5, Insightful

This was always my response to the 'it is immoral to block ads' argument. I always said that if blah.com is hosting the ads itself I would be willing to allow them but as long as the content is from some unknown domain that I haven't chosen to trust, forget about it.

--
This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
1. Re:This is why I block ads by green1 · 2013-02-01 02:52 · Score: 2
  
  My ad blocking is accomplished by my DNS server, so it's not so much unknown domains as domains known to serve nothing but ads.
I have been saying this for a long time by erroneus · 2013-02-01 02:21 · Score: 4, Informative

I consider "Adblock" and similar browser and computer add-ons to be *security* tools as much as bandwidth and other management.
Since the first time I noted browser exploits coming across common news and sales sites, I realized that the current model requires not trust of the sites we visit, but of the advertiser's sites... you know, like google and double-click and the others. I don't want to trust "unknowns" and so I block them unless I need them unblocked for access.
1. Re:I have been saying this for a long time by Bieeanda · 2013-02-01 02:39 · Score: 2
  
  What's worse is that ad networks will trade space between themselves. Even if a site is conscientious about the ads they show and the networks they're affiliated with, malware-laden ads can still filter through because of that promiscuity.
2. Re:I have been saying this for a long time by drinkypoo · 2013-02-01 04:01 · Score: 2
  
  I don't want to trust "unknowns" and so I block them unless I need them unblocked for access.
  If I have to unblock too many sites, I just don't use a site. Problem solved. Anything actually requiring doubleclick is evil and must be destroyed.
  Adblock and Noscript are necessities for security in a world in which the browser can't provide an adequate sandbox, which is the world we live in.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
Don't Click On Me. by TheRealHocusLocus · 2013-02-01 03:00 · Score: 3, Funny

Actual context sensitive Google ads that I was too terrified to click on:
"Ball lightning: Browse a huge selection now. Find exactly what you want today."
"Ann Coulter Ringtone! Send this ringtone to your phone right now!"
Made me toss my browser cookies it did. After you toss your cookies these things stop for awhile, then build once again to a crescendo. Lately I have been getting ads with garden gnomes leering suggestively.

--
<blink>down the rabbit hole</blink>
Re:DNS = faulty (hosts fix it)... apk by nickybio · 2013-02-01 05:07 · Score: 2

Please stop with the long, self-advertising posts. There's no doubt you are amazing and should start your own blog.
What About Ads INSIDE the Porn Pages? by retroworks · 2013-02-01 06:01 · Score: 3, Funny

Would the risks cancel each other out?

--
Gently reply
Re:Just Chill Out Already by Jeng · 2013-02-01 06:08 · Score: 2

If your responses weren't canned and also formatted in such a way that you believe your target audience is capable of no thought then you might not get modded down so much.
Really your comments look like something an adman on bath salts would come up with, you are two bolded sentences away from being the Time Cube guy.
Relax, just provide a place for people to start, or if you want to provide more information a single link to a guide will suffice. Oh, and you really should just go back to using an actual account instead of AC.

--
Don't know something? Look it up. Still don't know? Then ask.