1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

Banking Malware Distributed via YouTube Ads

Discussion in 'Security Updates' started by starbuck, Feb 24, 2014.

  1. starbuck

    starbuck Rest In Peace Pete Administrator

    Joined:
    Sep 26, 2009
    Messages:
    3,830
    Location:
    Midlands, UK
    Operating System:
    Windows 10
    CPU:
    AMD Athlon II x2 250 Processor 3.00GHz
    Memory:
    8gb DDR3
    Hard Drive:
    500gb SATA
    Graphics Card:
    ASUS GeForce GTX 960 2gb
    Power Supply:
    650w PowerCool X-Viper
    Malvertising attacks are becoming more and more common and it appears that not even YouTube users are safe. Security researchers from Bromium have come across a YouTube link that led users to an exploit kit website.

    According to experts, cybercriminals compromised an ad network that’s used to serve advertisements on YouTube. The ad network in question hosted the Styx exploit kit.

    This particular exploit kit is designed to leverage Java vulnerabilities in order to push malware onto infected devices. In this case, the malware that’s being distributed is Caphaw, a threat that’s designed to harvest banking information from victims.

    The command and control server used by the cybercriminals appears to be hosted in Europe and it relies on a domain generation algorithm (DGA).

    Bromium has notified Google of the attack, but so far, there are no details on how the cybercriminals have pulled this off.


    Source:
    http://news.softpedia.com/news/Banking-Malware-Distributed-via-YouTube-Ads-429011.shtml
     
    starbuck, Feb 24, 2014
    #1

Share This Page