Slashdot Mirror

← Back to Stories (view on slashdot.org)

Superfish Injects Ads In 1 In 25 Google Page Views

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes: A new report from Google has found that more than 5% of unique daily IP addresses accessing Google — tens of millions — are interrupted by ad-injection techniques, and that Superfish, responsible for a major controversy with Lenovo in February is the leading adware behind what is clearly now an industry. Amongst the report's recommendations to address the problem is the suggestion that browser makers "harden their environments against side-loading extensions or modifying the browser environment without user consent." Some of the most popular extensions for Chrome and Firefox, including ad-blockers, depend on this functionality.

14 of 91 comments (clear)

  1. To save the internet from fake ads by the_skywise · · Score: 4, Interesting

    Google sez we must remove ad blocker functionality!

    I smell an ulterior motive..

    1. Re:To save the internet from fake ads by swillden · · Score: 3, Informative

      Google sez we must remove ad blocker functionality!

      I smell an ulterior motive..

      Reading comprehension fail. The summary says:

      Amongst the report's recommendations to address the problem is the suggestion that browser makers "harden their environments against side-loading extensions or modifying the browser environment without user consent." Some of the most popular extensions for Chrome and Firefox, including ad-blockers, depend on this functionality.

      I'd expect that most users who install ad blockers consent to having it modifying the browser environment.

      --
      Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  2. No control is the real issue by cstec · · Score: 4, Funny

    As a serious coffee consumer, their main problem is you can't customize the cup of coffee. I drink so much coffee that I started making it weaker, and weaker, and then half strength. The last time I stayed in an office with a Keurig setup, I think I nearly killed myself before I realized what was happening.

    I'd love to have one, but the 'my way or the highway' reality of those little cups doesn't work. And don't even start on the cost.

    1. Re: No control is the real issue by cstec · · Score: 2, Informative

      I have no idea. It looked a lot like the previous story on the screen!

      Shouldn't have used the words "no control"

    2. Re:No control is the real issue by Anonymous Coward · · Score: 4, Funny

      So even the Keurig 2.0 is infected by Superfish? This is worse than I thought!

  3. Or disable javascript by Spy+Handler · · Score: 4, Insightful

    whoever thought running scripts from random sites and ads was a good idea?

    1. Re:Or disable javascript by Anonymous Coward · · Score: 2, Insightful

      90% of sites now don't work at all without javascript. It makes for a very boring internet.

    2. Re:Or disable javascript by MadKeithV · · Score: 2

      90% of sites now don't work at all without javascript. It makes for a very boring internet.

      Most sites work fine once you enable their main URL. The ones that show up with a list a mile long of script sources are the ones where you just click the "X" instead.

  4. Math check by Anonymous Coward · · Score: 2, Informative

    Since when is 5% the same as 1 in 25??

    1. Re:Math check by dotancohen · · Score: 4, Informative
      5% are affected, Superfish is responsible for 80% of those affected, i.e. 4% total. Here is a restatement of the fine summary, with some noncritical interjections removed (and TFS was missing a comma anyway):

      5% of IP addresses accessing Google are interrupted by ad-injection techniques, and Superfish is the leading adware

      --
      It is dangerous to be right when the government is wrong.
    2. Re:Math check by fph+il+quozientatore · · Score: 2

      Also, 5% of IP addresses, not of machines. If one student in your whole university network has it, that still count as an infected address.

      --
      My first program:

      Hell Segmentation fault

  5. Just don't allow all JavaScripts. by Futurepower(R) · · Score: 4, Informative

    Just allow JavaScript on the main URL.

  6. Re:Do as I say, not as I do by Adriax · · Score: 2

    Google is providing a service, or is serving ads on behalf of the webpage owner you are viewing.
    Superfish is getting ad revenue without providing you a service.

    If you can't tell the difference between a legitimate and limited advertiser and leech malware then you need your eyes checked.

    --
    I don't suffer from insanity, I enjoy every minute of it!
  7. Re:Do as I say, not as I do by Adriax · · Score: 2

    I don't see ads because I run adblock.
    But I'm not deluded enough to believe ads don't have a legitimate use.

    Slapping a sponsored link to adobe at the top of my search for "pdf editor" is vastly different than overwriting the links and sending me to a hack job website trying to sell me genuine counterfit handbags, black magic love slavery spells, and adobe pro licenses for 1/10th what they normally cost.

    --
    I don't suffer from insanity, I enjoy every minute of it!