Skip to main content
  1. Home
  2. Web
  3. News

Realtor.com the latest victim of malvertising plague

By

It’s not a new threat on the scene, but it’s still dangerous — and malvertising on the web is on the rise.

Malvertising is the spread of malware through online advertising, and it’s pretty ugly. It’s especially prescient as ads on the web have been challenged by a number of technical factors in browsers, the progressive changeover to HTML5 from Flash technology, and the emergence of app blockers in places like the Apple App Store.

Recommended Videos

In recent years, the spread of malware transmitted through ads has grown exponentially, by some estimates quadrupling in size from year to year. The threat is major, and with every malvertising infection, the potential for hackers to execute arbitrary code on a base of infected computers increases. The scale and sophistication of attacks continues to march on, and much of the response has hinged on fighting fires as outbreaks pop up. Some worry that this explosion will change the very nature of advertising networks and how we view ads on the web.

A plague is out there

Related

An ugly malvertising campaign on the website Realtor.com last week exploited unpatched systems, and this particular campaign is especially worrisome for one reason: It’s the latest in a string of attacks that don’t even require your click on a bogus advertisement to trigger an infection. Realtor.com gets an estimated 30 million visits a month, which means as many as a million people may have been exposed to the malware in a single day. According to the MalwareBytes blog, the payload in this case appeared to be the Bedep Trojan, which can hijack browsers and install ransomware. Yahoo, Forbes, YouTube, and other major websites join a lengthy list of companies that have been affected by these ads.

realtor_flow
MalwareBytes
MalwareBytes

Follow the flow this diagram and you’ll witness the appeal of spreading malware through these means. By all measurable information, the campaigns appear compelling and profitable — that’s why we’re seeing such see a concerted effort to produce convincing advertisements with products that appear genuine. The black market for the zero-day vulnerabilities implemented in these malvertising attacks also indicates investment and effort. The very placement of ads also incurs an operational cost.

Targeted infections

It’s also interesting to consider that the very same base of information that makes advertising targeted and personal has become the target for spreading specific malware. The parties behind this surge in malvertising have targeted ad networks and websites so far. It may be a matter of time only before they micro-target certain individuals within an organization or within government through these innovative techniques. Cyber security usually boils down to a race to find the point of least resistance — and the latest front may very well be malvertising.

The best way to deal with these threats is to keep your browser, plugins, and operating systems up to date. Always use an anti-virus product to protect your systems, and when required, use a malware tool to perform cleanups. let’s be safe out there, everyone.

John Casaretto
John Casaretto
Former Digital Trends Contributor
John is the founder of the security company BlackCert, a provider of SSL digital certificates and encryption products. A…
Topics
How to change margins in Google Docs
Laptop Working from Home

When you create a document in Google Docs, you may need to adjust the space between the edge of the page and the content -- the margins. For instance, many professors have requirements for the margin sizes you must use for college papers.

You can easily change the left, right, top, and bottom margins in Google Docs and have a few different ways to do it.

Read more
What is Microsoft Teams? How to use the collaboration app
A close-up of someone using Microsoft Teams on a laptop for a videoconference.

Online team collaboration is the new norm as companies spread their workforce across the globe. Gone are the days of primarily relying on group emails, as teams can now work together in real time using an instant chat-style interface, no matter where they are.

Using Microsoft Teams affords video conferencing, real-time discussions, document sharing and editing, and more for companies and corporations. It's one of many collaboration tools designed to bring company workers together in an online space. It’s not designed for communicating with family and friends, but for colleagues and clients.

Read more
Microsoft Word vs. Google Docs
A person using a laptop that displays various Microsoft Office apps.

For the last few decades, Microsoft Word has been the de facto standard for word processors across the working world. That's finally starting to shift, and it looks like one of Google's productivity apps is the heir apparent. The company's Google Docs solution (or to be specific, the integrated word processor) is cross-platform and interoperable, automatically syncs, is easily shareable, and perhaps best of all, is free.

However, using Google Docs proves it still has a long way to go before it can match all of Word's features -- Microsoft has been developing its word processor for over 30 years, after all, and millions still use Microsoft Word. Will Google Docs' low barrier to entry and cross-platform functionality win out? Let's break down each word processor in terms of features and capabilities to help you determine which is best for your needs.
How does each word processing program compare?
To put it lightly, Microsoft Word has an incredible advantage over Google Docs in terms of raw technical capability. From relatively humble beginnings in the 1980s, Microsoft has added new tools and options in each successive version. Most of the essential editing tools are available in Google Docs, but users who are used to Word will find it limited.

Read more