Details of hijacked 24/7 ad server emerge

The attack should be a warning to the Web, said Andrew Storms, director of security operations at nCircle Network Security.

Ground control to major mess

Tripod places ads on sites hosted under its free plan; customers who pay hosting fees, however, do not have ads stuck on their sites' pages.

It's not known if the only sites served with ads containing the IFrame were Tripod's. There were hints, however, that Tripod might not be the only tainted domain. Last Wednesday, for example, NASA issued a warning to workers of a surge in attacks on Windows PCs running Internet Explorer and RealPlayer. According to the space agency's bulletin, the attacks had come from "well-known news sites which may be hosting advertisements from ad servers that redirect the users to malware hosting sites." Friday, NASA spokesman Mike Mewhinney declined to name the news sites the agency suspected of displaying rogue ads.

Because 24/7 Real Media's ad research is significant, the IFrame-infected ads may have been placed on a large number of Web sites. According to the most recent data from Internet audience measurement firm comScore, 24/7's ads reached 50% of all Americans online last month. The company's reach placed it at No. 15 on comScore's September Top 50.

24/7 Real Media did not respond to e-mails sent Friday and Sunday.

Symantec couldn't pin down the start date of the attack, but it did note that the malicious site had hosted exploit code since at least Oct. 8. "There is a possibility that this IP [has been] controlled by the same attackers for quite some time and that they are using it to launch numerous low-key attacks," said Adams, Ball and Roe.

Late Friday, RealNetworks issued a patch for RealPlayer 10.5 and the RealPlayer 11 beta. It also urged users of earlier versions to first upgrade to 10.5 or 11, then apply the patch. Only Windows versions of RealPlayer are vulnerable, RealNetworks said in its advisory; Mac and Linux versions are not at risk.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Gregg Keizer

Computerworld
Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Compare & Save

Deals powered by WhistleOut
WhistleOut

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?