🚨Hackers deploy crypto drainers on 2,000 Wordpress websites 🚨

As originally reported last month by security firm Sucuri, a large amount of Wordpress websites was originally hacked in order to promote crypto drainers through malvertising and YouTube videos.

However, now the

In physics, the observer effect is the disturbance of an observed system by the act of observation 👀 just like malvertising campaigns shape up when we look at the malware filenames 😎

Never a good sign when your website designer's website is hosting malvertising, their phone number is disconnected and the site they were white-label hosting for you is suspended by the hosting provider.

If you are a SMB, don't slack on securing your website.

#Throwback to last week, when we went to Mercyhurst University to hear their final product presentation on 'The Impact of Malvertising' 👏👏👏Congratulations and many thanks to the students and academics involved in this project! 🎉

#Throwback Thursday
Here's what we saw 👇

A threat actor distributes the #Sliver C2 framework via websites impersonating Advanced IP scanner / WinSCP / Putty, likely using malvertising.

Distribution website:
hxxps://advanced-ip-scann.]org/av/download.php

Sliver C2:
94.156.65.]115:8443

⬇️

#Malvertising : This #cyberthreat isn’t on the dark web, it’s on #Google . malwarebytes.com/blog/news/2024… #hackers

In today's 'dumb parasites who kill their hosts' news, as someone who runs Google malvertising on some hobby websites I got some spam from Google encouraging content providers to beg money from readers.

New Malvertising Campaign Leads to Ransomware Through Trojanized Installers of WinSCP and PuTTY securityonline.info/new-malvertisi…

(1/7) 💡 Illumination of a large resilient infrastructure distributing #NetSupport RAT using:
- Google Ads (malvertising)
- Traffic Distribution System (TDS)
- Fake websites
- MSIX

40+ IP addresses
70+ domain names

IoCs:
gist.github.com/qbourgue/62cee…

x.com/threat_down/st…

⬇️

So, we had to take a minute to digest PossibleEvent in all its sunny glory, but here's our take on this year's event in #Miami ☀️🌴

#Digital #Advertising #BrandSafety #Piracy #AntiFraud #ThreatIntel #Malvertising #Transparency

🆕 Blog post: A peek inside a #malvertising campaign

➡️ threatdown.com/blog/a-peek-in…

¡Ojo con el Malvertising!
El Malvertising es una amenaza en línea que puede ocultarse detrás de anuncios aparentemente inofensivos. Mantente alerta y evita hacer clic en anuncios sospechosos.
Protege tu privacidad y seguridad en la web.

Did you know? Those urgent popups from a website informing you that your device is infected could be the real malware infection! 😮

Malvertising is the practice of tricking users into downloading malicious software that appears to be a solution.

ℹ️ New walkthrough: Google ad ➡️ #FakeBat ➡️ #zgRAT

🔗 threatdown.com/blog/fakebat-0…

#malvertising #threatintel

⚠️ Malicious Google ad for Todoist -> #Fakebat

➡️ todciist[.]com

➡️ hxxps[://]ultra-fasteners[.]com/data/Todoist-x86[.]msix

💡 C2: cdn-inform[.]com

#malvertising #threatintel

At #DefCamp Cluj-Napoca, May 16-17, we'll explore, together with 🎙 Andrei Anton-Aanei - Software Engineer @ Bitdefender - the technical depths of trends in cyber threats on social media, malvertising and scamming techniques on Facebook, and the role of #AI in these matters.

If you see an ad that seems too good to be true, it probably is. There’s a thing called malvertising - malicious advertising and it's trying to steal your data. Be careful out there.

Learn more about malvertising ➡️ hubs.la/Q02wgWLJ0

#Malvertising #CyberSecurity #malware

buff.ly/3QkwGV6
Malicious advertising remains a significant threat, distributing harmful software through online ads disguised with malicious code. Stay vigilant against these deceptive practices. #Malvertising #CyberSecurity

Scammer are getting creative using malvertising, deepfakes, and YouTube: We’re never surprised to hear that cyberattackers are still at it. For this past quarter, scams have taken more than their fair share of the cyber threat pie. However, even if… securityboulevard.com/2024/05/scamme…

Bitdefender researchers look into malware spreading through Meta’s sponsored ad system. Sponsored malvertising campaigns, run via compromised Facebook profiles, impersonate Midjourney, Sora AI, DALL-E 3, Evoto & ChatGPT 5, and lead to info stealers. bitdefender.com/blog/labs/ai-m…