Google ads with malware! Yes, you read well. Last night, Malwarebytes researchers noticed a strange behavior on websites like Last.fm, The Times of Israel and the Jerusalem Post. The ads advertised by these websites were unusually aggressive, triggering warnings from Malwarebytes anti-virus and systems.
After enough research, ο ερευνητής ασφαλείας Jerome Segura συνειδητοποίησε ότι το πρόβλημα προέρχεται από τα δίκτυα διαφημίσεων της Google, DoubleClick και το δημοφιλές Zedo. Και τα two networks, were pushing malicious ads designed to distribute it Zemot malware. A representative of her Google confirmed the problem stating: "Our team is aware of the problem and has taken the necessary steps to eliminate it."
Malware served by ad networks (or “malvertising”) is nothing new, but this incident is notable for its unusually broad scope. attacks.
"It was active but not visible for several weeks until we started seeing popular sites throwing flags at honeypots us,” says Segura.
"Then we thought something was wrong." "The first signs came in late August, and to date millions of computers may have been exposed to Zemot, and people with uninformed antivirus are at greater risk."
Zemot focuses on Windows XP computers, although it can also infect modern operating systems that run on x86 and 64bit. Zemot is designed to bypass the security of a system before it infects additional malware.
"Even if there were only 5% vulnerable systems," says Segura, "we expect a very large number of infections."