Some Bing Ads Redirecting To Malware

← Back to Stories (view on slashdot.org)

Some Bing Ads Redirecting To Malware

Posted by timothy on Thursday October 10, 2013 @09:39AM from the which-is-worse-malware-or-av-nagware dept.

An anonymous reader writes "Security firm ThreatTrack Security Labs today spotted that certain Bing ads are linking to sites that infect users with malware. Those who click are redirected to a dynamic DNS service subdomain which in turns serves the Sirefef malware from 109(dot)236(dot)81(dot)176. ThreatTrack notes that the scammers could of course be targeting other keywords aside from YouTube. The more popular the keywords, the bigger the potential for infection."

7 of 146 comments (clear)

Min score:

Reason:

Sort:

Posting by c00rdb · 2013-10-10 09:42 · Score: 5, Funny

Posting to undo accidental mod
I know it's another stereotypical diss on Bing but by themushroom · 2013-10-10 09:45 · Score: 5, Funny

People use Bing?

--
Laughter is the Spackle of the Soul.
Perspective by Empiric · 2013-10-10 09:51 · Score: 5, Insightful

...and for those of us who think that ads -are- malware, just targeted at a different processor, AdBlock still takes out two birds with one stone...

--
~ Whence do you come, slayer of men, or where are you going, conqueror of space?
Re:This also in... by ShaunC · 2013-10-10 09:59 · Score: 5, Insightful

...ad hosting network (that happens to be used by major search providers)
...like Bing and Yahoo (whose search results come from Bing).

"Bing ads" is still misleading in the usual headline sensationalism way...
Yeah, it's not like the service itself is named Bing Ads, or anything.

--
Thanks to the War on Drugs, it's easier to buy meth than it is to buy cold medicine!
Re:I know it's another stereotypical diss on Bing by Anonymous Coward · 2013-10-10 10:04 · Score: 5, Insightful

If your cpu is overworked by browsing 1 secure site, you might want to consider an upgrade.
Re:This also in... by girlintraining · 2013-10-10 10:05 · Score: 5, Insightful

I suppose you can be mad at Microsoft for not constantly scanning their customers, but "Bing ads" is still misleading in the usual headline sensationalism way...
Actually, you can't. A standard tactic is to serve regular, unmodified ads, to IP address blocks known to have businesses that to this. For example, the google crawler -- many websites will show different pages if you simply sub the user agent string in as Google; Bypassing compulsory registration, not displaying navigation ... adding piles of SEO words to the bottom of the page, and the list goes on.
Microsoft can't be expected to protect against stuff like this; Every website that allows javascript to be injected from a 3rd party website is equally vulnerable. And that's most of them; Including Slashdot; It has script links to rpxnow.com and fsdn.com. Hundreds of websites link into Google's ajax and analytics pages. A great many websites simply break if you disable 3rd party javascript.
So blame Microsoft if you want, but really, the people you want work at ORACLE.

--
#fuckbeta #iamslashdot #dicemustdie
The actual article is here.. by Dynamoo · 2013-10-10 10:18 · Score: 5, Insightful

The actual article is here. TheNextWeb is a stupid site that doesn't work at all if you are not running Javascript. I choose to block most scripts, partly because.. a lot of ads are infected with malware. Yuk.

--
Never email donotemail@WeAreSpammers.com