Slashdot Mirror

← Back to Stories (view on slashdot.org)

Some Bing Ads Redirecting To Malware

Posted by timothy on from the which-is-worse-malware-or-av-nagware dept.

An anonymous reader writes "Security firm ThreatTrack Security Labs today spotted that certain Bing ads are linking to sites that infect users with malware. Those who click are redirected to a dynamic DNS service subdomain which in turns serves the Sirefef malware from 109(dot)236(dot)81(dot)176. ThreatTrack notes that the scammers could of course be targeting other keywords aside from YouTube. The more popular the keywords, the bigger the potential for infection."

29 of 146 comments (clear)

  1. Posting by c00rdb · · Score: 5, Funny

    Posting to undo accidental mod

    1. Re:Posting by mythosaz · · Score: 3, Funny

      +1 Clever.

    2. Re:Posting by Jeremiah+Cornelius · · Score: 4, Funny

      Redirecting to Malware?

      What!? It installs Windows on your computer?!?

      --
      "Flyin' in just a sweet place,
      Never been known to fail..."
    3. Re:Posting by Rockoon · · Score: 2

      it was first post, stoopid.

      --
      "His name was James Damore."
  2. I know it's another stereotypical diss on Bing but by themushroom · · Score: 5, Funny

    People use Bing?

    --
    Laughter is the Spackle of the Soul.
  3. This also in... by mythosaz · · Score: 2

    ...ad hosting network (that happens to be used by major search providers) compromised to serve malware.

    I suppose you can be mad at Microsoft for not constantly scanning their customers, but "Bing ads" is still misleading in the usual headline sensationalism way...

    1. Re:This also in... by ShaunC · · Score: 5, Insightful

      ...ad hosting network (that happens to be used by major search providers)

      ...like Bing and Yahoo (whose search results come from Bing).

      "Bing ads" is still misleading in the usual headline sensationalism way...

      Yeah, it's not like the service itself is named Bing Ads, or anything.

      --
      Thanks to the War on Drugs, it's easier to buy meth than it is to buy cold medicine!
    2. Re:This also in... by girlintraining · · Score: 5, Insightful

      I suppose you can be mad at Microsoft for not constantly scanning their customers, but "Bing ads" is still misleading in the usual headline sensationalism way...

      Actually, you can't. A standard tactic is to serve regular, unmodified ads, to IP address blocks known to have businesses that to this. For example, the google crawler -- many websites will show different pages if you simply sub the user agent string in as Google; Bypassing compulsory registration, not displaying navigation ... adding piles of SEO words to the bottom of the page, and the list goes on.

      Microsoft can't be expected to protect against stuff like this; Every website that allows javascript to be injected from a 3rd party website is equally vulnerable. And that's most of them; Including Slashdot; It has script links to rpxnow.com and fsdn.com. Hundreds of websites link into Google's ajax and analytics pages. A great many websites simply break if you disable 3rd party javascript.

      So blame Microsoft if you want, but really, the people you want work at ORACLE.

      --
      #fuckbeta #iamslashdot #dicemustdie
    3. Re:This also in... by lorenlal · · Score: 2

      Here was the comment I was looking for. I've seen third-party ads attack from plenty of reputable (and not so reputable) sites. As much as I love piling on MS, Bing, and IE, I don't think it's wholly fair to single them out for this issue. Of course, anecdotes are worth little more than the electrons that carry the information to your eyes, but I'm fairly confident most of us have been called in to clean up an infection from [typical site used by many].

      Now, if you want to talk about Microsoft's awful ad campaigns, that's 100% fair, and please proceed.

    4. Re:This also in... by rk · · Score: 2

      Oracle? Believe me, I've a got a hate on for Oracle and the list and litany against them is long and storied, but how are they responsible for 3rd party Javascript?

    5. Re:This also in... by rtb61 · · Score: 2

      Perhaps a legal review is required. How far should the advertiser be allowed to seperate themselves from the contents of the Ads they serve. The generate profits by promoting products and seem to be completely free from any responsibility for the reality of the advertisements versus what they actually promote.

      At the moment advertisers make money by selling products, blatantly promoted with lies and regardless if the impact of those products upon victims the promoters get to wander off laughing with those profits generated by creating those victims.

      I think it is about time, that those who generate income from products promoted by misleading advertising, start sharing the pain of the victims their actions are creating. You make money by selling lies, it about time when those lies get exposed that you start paying back the victims.

      --
      Chaos - everything, everywhere, everywhen
    6. Re:This also in... by Nemyst · · Score: 4, Funny

      When in doubt, blame Oracle. It works surprisingly often!

  4. Re:I know it's another stereotypical diss on Bing by Aighearach · · Score: 2

    And we get the MS logo instead of the Borg Bill. :(

  5. Perspective by Empiric · · Score: 5, Insightful

    ...and for those of us who think that ads -are- malware, just targeted at a different processor, AdBlock still takes out two birds with one stone...

    --
    ~ Whence do you come, slayer of men, or where are you going, conqueror of space?
  6. One more reason for me to not use Bing by harvestsun · · Score: 3, Insightful

    Aside from the other obvious reasons, such as "it looks awful" and "for the types of things I search for, it's vastly inferior to Google".

  7. Re:I know it's another stereotypical diss on Bing by Anonymous Coward · · Score: 5, Insightful

    If your cpu is overworked by browsing 1 secure site, you might want to consider an upgrade.

  8. Re:I know it's another stereotypical diss on Bing by Anonymous Coward · · Score: 4, Funny

    I do it because as key lengths get longer, it is harder and harder to browse the HTTPS web using a telnet client. That is even with my pocket calculator nearby!

  9. The actual article is here.. by Dynamoo · · Score: 5, Insightful

    The actual article is here. TheNextWeb is a stupid site that doesn't work at all if you are not running Javascript. I choose to block most scripts, partly because.. a lot of ads are infected with malware. Yuk.

    --
    Never email donotemail@WeAreSpammers.com
  10. Who's responsible for the ads served by EMG+at+MU · · Score: 3, Insightful

    I think the pertinent question is whether Microsoft or Google or Yahoo should responsible for the ads they show.

    Take any given major website, turn off AdBlockPlus, FlashBlock (or alternatives), and NoScripts (or alternatives). How many ads can you count that are of the nature: "Learn that 1 wierd trick to lose 10 pounds" or "Enter your age to see if you qualify for money to go back to school" or "blah blah obvious scam".

    They are everywhere. Now for me, I think much less of a website and the entity that owns it if they are serving these ads. I actually feel that if you get scammed through one of them it should be the website's fault for being party to a crime, because they served you the malicious ad.

    If I had a brick and mortar business, and people paid me to stand inside my business and "demo products" or something, and you came in and got scammed, you would be pissed at my business. The business might also be liable.

    Obviously the internet is different than meat space. Obviously you cant fix stupid. So who is responsible for serving a malicious ad?

    1. Re:Who's responsible for the ads served by Animats · · Score: 4, Informative

      I think the pertinent question is whether Microsoft or Google or Yahoo should responsible for the ads they show.

      That's a very good question. Because the major search engines do not vet their advertisers very well. Google had to pay $500,000,000 to the USDOJ when they were caught willfully running ads for an obvious drug dealer. (No, it wasn't about "Canadian pharmacies". Some Google apologists tried to spin it that way, but the details came out.) Google has since clamped down. They had to; they were on DOJ probation for two years, with felony charges hanging over them. "Oxycontin no prescription" no longer returns ad results. Same for "viagra". Bing now pops up an "Is it legit?" box for searches like that.

      Google's clampdown was narrow. Searches with "foreclosure" and "credit repair" have a high population of scammers. Financial search keywords carry a high price, because the marks can be taken for big amounts.

      It's possible to measure basic advertiser legitimacy. We do that with SiteTruth, which tries to find the real-world business behind the ad. For over 30% of Google advertisers (by domain name), there's no identifiable real-world business behind the ad. (Running an anonymous business is illegal in some states and in the EU.) That's embarrassing, and highly profitable for Google.

  11. Re:Proof by msauve · · Score: 4, Funny

    Nothing costs $0.

    That's a tautology.

    --
    "National Security is the chief cause of national insecurity." - Celine's First Law
  12. Re:I know it's another stereotypical diss on Bing by interkin3tic · · Score: 4, Funny

    Hey man, google STEALS your information! MS told me so. So that must mean that MS doesn't do that. I mean, they'd be HYPOCRITES otherwise. So I use Bing to keep my porn searches safe. My sexual attraction to boobs and butts will remain safe from the NSA.

  13. Re:I know it's another stereotypical diss on Bing by vadim_t · · Score: 2

    Whatever your problem is, it's not with SSL.

    AES-256 on my old laptop works at 65 MB/s. AES-128 goes at 90MB/s. This might be a bit of a problem if you've got a gigabit LAN and are using it to full capacity, but given that googling stuff amounts to about 24K there's no way that is making a noticeable difference.

  14. Re:I know it's another stereotypical diss on Bing by technomom · · Score: 2

    Well there's Steve Ballmer, Bill Gates, Steve Ballmer's mom, and Bill Gates' mom.......and that's about it.

  15. All ad networks do this by onyxruby · · Score: 4, Insightful

    Not defending Bing in particular here, but every ad network gets utilized to deliver ads by malicious parties. Every ad company you can think of has staff that work full time just to look for and filter out malicious ads. A pretty significant portion of all malware is delivered my ads that are unwittingly served by sites from Facebook to CNN or any other site you can think of.

    Here's a nice link to a NIST report on the matter that you can get to once the government gets back to work. The problem goes back many, many years, so why on earth is this being reported as news?

  16. Re:I know it's another stereotypical diss on Bing by _merlin · · Score: 2

    Well it is. SSH protocol overhead is higher than the minimal TCP overhead on the data connection for an FTP transfer. Whether this is significant or not is a different issue, but the statement is strictly true.

  17. Re:I know it's another stereotypical diss on Bing by Zero__Kelvin · · Score: 2

    "I started using it a couple weeks ago because https is a useless waste of cycles."

    Most people these days who use Google use more than just the search feature, but that being said, even if you don't that is a phenomenally ridiculous reason to switch search engines from Google to Bing.

    ". Also, when using Chrome you get Bing searches from typing in the URL bar instead of the URL. ... I'm thinking I might try Firefox again too. "

    OK. You have to be trolling. You don't trust Google with your searches, but you do trust them with your entire computer. Excellent.

    If you aren't trolling: News Flash: Google isn't protecting your data any less than Microsoft. If Google reports more, it means they are more honest. What you are doing is sleeping with the local whore who swears she never cheats on you because your ex-girlfriend "admitted" that she had sex against her will.

    --
    Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
  18. surely i'm not alone? by steak · · Score: 2

    doesn't every body love bonzi buddy?

    --
    lose != loose
  19. Re:Proof by mcgrew · · Score: 2

    Nothing costs $0.

    How much are you paying for the air that you can't live without? How much are farmers paying for the rain that waters their crops? How much does a Cory Doctorow e-book cost? How much does it cost to watch a sunset? How much does it cost to write a book? (granted, actually publishing it is >$0 but writing it costs $0.) How much does it cost to noodle catfish?

    You're a fool, AC. The things you need the most -- air and water -- cost $0.

    --
    Free Martian Whores!