View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
September 25, 2015

Malvertising attack spreads to xHamster adult site

News: Malwarebytes discovered malicious advert for a dating website.

By Charlotte Henry

Malwarebytes has uncovered a continuation of the SSL malvertising campaign that they had already found on major websites like Yahoo.com and MSN.com.

In a blog post, Jerome Segura, senior security researcher, Malwarebytes said: "We observed the Microsoft Azure and RedHat cloud platforms and now are seeing IBM’s Bluemix being leveraged by threat actors who enjoy the free HTTPS encryption that it provides them in the delivery of malicious code."

It has documented an attack on one particular site, xHamster.com, which serves up a malicious advert for a dating website. The malware includes checks to avoid honeypots and security researchers.

The firm has also documented a ransomware attack via malvertsing on the same adult website. It produces a website claiming to be from Interpol and the NSA, and that the computer is making audio and video recordings.

xHamster.com has nearly half a billion users every month. The firm that serves the adverts has been notified and has taken steps to remove the malware.

Content from our partners
Why food manufacturers must pursue greater visibility and agility
How to define an empowered chief data officer
Financial management can be onerous for CFOs, but new tech is helping lighten the load

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU