A “Malvertising” campaign has used legitimate online advertising supply chains to distribute malicious adverts around the world. Because the return from clicks on malicious ads is so instantaneous, the posters are willing and able to outbid legitimate advertisements. “The ads often contain malicious code that exploits unpatched vulnerabilities in browsers or browser plug-ins, such as Adolbe’s Flash Player, so that the user gets infected by ransomware, key loggers, and other types of malware simply by visiting a site hosting the malicious link,” said researchers who have been working to track the issue.
Source: Advanced Malvertising Campaign Exploits Online Advertising Supply Chain | SecurityWeek.Com