View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
August 17, 2015

Hackers behind Yahoo malvertising attack target more websites

More than one billion sites are reported to be targeted.

By CBR Staff Writer

Hackers behind the recent malicious advertising attack on the Yahoo ad network are reported to be attacking more websites.

They are reportedly targeting AdSpirit, and infecting Drudge Report, Weather Underground, NetZero and other websites with malicious advertisements.

Malwarebytes Labs security researcher Jerome Segura said this is a similar malvertising campaign that has been carried out for weeks; it’s only moved to a new ad network used by many top publishers.

Hackers are loading the malvertising through, redirecting to an Azure website.

The HTTPS encryption used in both URLs is not allowing users to identify the malicious traffic at the network layer.

The malicious ad has now been taken down, but the damage is expected to be vast due the number of monthly visits to the sites.

The monthly visitors of are 61.8 million; and have 49.9 million and 6 million users respectively. Yahoo has an estimated 6.9 billion views per month across its network.

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

Segura said: "Malvertising is a silent killer because malicious ads do not require any type of user interaction in order to execute their payload. The mere fact of browsing to a website that has adverts (and most sites, if not all, do) is enough to start the infection chain.

"The complexity of the online advertising economy makes it easy for malicious actors to abuse the system and get away with it. It is one of the reasons why we need to work very closely with different industry partners to detect suspicious patterns and react very quickly to halt rogue campaigns."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.