adnetworks

adnetworks

Ad servers hit by rogue plug-in

A site owner whose web team spent 100 hours trying to figure out the reason for their site being compromised finally isolated the problem. They gave us permission to share the following information, which we are reproducing here. Please note that we have not verified the details of this report, and we present it as-is for informational purposes only. If anyone has more information on this attack, please let us know in the comments or by e-mail at contact@stopbadware.org.

A group registered in Russia and constantly moving around Scandavavia on a daily basis using the domain newtickepicker.com has hacked into many of the OpenX Ad servers including ours to insert a plug in.  It then places itself into a one pixel unit on a graphic position for an advertisement. The plugin is called "mergedDeliveryFunctions.php."

Update 3/22/10: A couple members of the community pointed out this recommendation to help protect OpenX Ad servers from being compromised in the future.

Tags: 
adnetworks, exploits, websites

Tracing an ad attack

Posted on January 10, 2008 - 15:24 by egeorge

The folks at MacHouse have posted a nicely detailed analysis of the steps they went through to track down the origins of a malicious banner ad they found on their own website. MacHouse traced a malicious flash ad through a chain of advertising resellers, and to a company that hadn't known its own ad had been stolen and co-opted.
The detective work involved is illuminating reading, particularly for any website owners concerned about potentially malicious ads.

Thanks to Sandi at Spyware Sucks for the link!

Tags: 
adnetworks, ads, thirdpartycontent

Debating the ethics of online ads

Posted on December 17, 2007 - 13:16 by egeorge

A Danish member of the StopBadware discussion group has highlighted a disturbing outbreak of ad-driven malware on the websites of Danish media companies over the past several days. Cometcom1 posted that within several days, the affected websites were cleaned up, but that the owners of the affected sites seem unwilling to admit their share of responsibility, laying all blame squarely on the ad networks themselves. A lively debate on the ethics of using advertising online ensued.

Cometcom1 reports that there has now been a second round of infection hitting different Danish media sites, leading some users to avoid all media sites and some companies to block media sites preemptively from their networks.

At StopBadware, we feel that both website owners and advertising networks have a shared responsibility to ensure the safety of internet users. While ads are generally hosted remotely, an ad shown on a site is as much a part of that site as its other content. As with any third-party content, we caution website owners to choose carefully what they allow onto their sites.

Tags: 
adnetworks, ads, discussiongroup, thirdpartycontent