Adware News, Articles and Updates

New MacOS malware steals bank log-in details and intellectual property

Security researchers have discovered a new, invasive OSX.Pirrit adware variant targeting Mac OS X that enables cyber-criminals to take full control of a user's Mac computer.

WordPress plugin update leads to thousands of sites exposing users to adware

Paul Bischoff, security and privacy advocate for Comparitech.com is warning website owners who use the Simple Share Buttons plugin for WordPress that clicking to "accept" the terms and conditions of the latest update could allow their websites to subject users to threats.

'Wizz' kids: Talos researchers pinpoint French firm as source of spyware-adware threat

A supposedly legitimate French software firm, Tuto4PC, has actually infected an estimated 12 million PC users with a generic Trojan disguised as downloadable utilities programmes, according to an analysis from Cisco's Talos research division.

Android adware installs itself without permission

Adware Shedun takes advantage of legitimate features in Android Accessibility Service

ICYMI: Windows deprecating SHA-1; Apps leaking data; Safe Harbour II; Auto-rooting adware; Apple Pay

In Case You Missed It: the most popular articles from the past seven days. Windows accelerates SHA-1 deprecation, Too many apps leaking personal data, Safe Harbour 2 coming soon, Apps auto-rooting Android devices, and Bank warning to Apple Pay users.

More than 20,000 apps auto-root Android devices

Auto-rooting adware embeds itself as a system application, and becomes almost impossible to remove.

Research shows 12 new malware strains discovered every minute

A 64.8 percent spike of new malware strains have been discovered by researchers at G DATA.

'Kemoge' adware infects users in more than 20 countries

Yet another adware campaign stemming from China has been identified, and in this fresh go, victims' Android device can be completely taken over.

Malvertising campaign found on Google Adwords

Google's advertising service vulnerable to cyber-crooks

Chinese mobile app promotion company launches global Android adware campaign

A China-based mobile app promotion company reportedly created an adware attack that takes total control over victims' Android devices, FireEye found.

The com[dot]com extension again directing users to fake sites

A new scheme has been uncovered making use of an old trick: capturing users who click on a link with a com[dot]com extension that will lead to fake websites.

Mac malware installer automatically grants access to keychain

Malwarebytes is reporting that a new variant of the adware installer has surfaced that grants access to a user's keychain.

Does Adblock Plus weaken Mac OSX security?

By downloading an exception text file that is inserted into the ad blocker configuration files, the Genieo adware variant approach could be used to perform other actions that you don't want, not just allowing adware.

Lenovo laptops automatically re-install removed software

Firmware on Lenovo laptops keeps installing software - which is not just annoying, its also a security vulnerability.

Yahoo hit by malvertising, potentially exposing millions of web surfers

Malvertising on the Yahoo sites, discovered by Malwarebytes, has now been tackled, but the potential level of exposure was massive.

Malvertising attack could hit 50 m users

A 'malvertising' attack that could affect as many as 50 million users, according to one security researcher, has hit some popular websites including Facebook's Bejewelled Blitz.

New Google checks fail to protect apps from adware

Malicious adware is still getting onto company mobiles through the Google Play app store despite increased security.

Son of Superfish, Lenovo bloatware variants start to surface

There are as many as a dozen variants of the Superfish bloatware found last week on Lenovo laptops, it has been discovered.

Pre-installed Lenovo adware hijacks TLS/SSL encryption

Lenovo's consumer laptops ran pre-installed adware/malware which could be used to intercept and hijack encrypted SSL/TLS web sessions.

'Serious threat' as free web apps plant Trojans and ransomware

Security professionals are being warned of a 'serious threat' from cyber-criminals using free web apps to distribute malware including Zeus, DOFOIL, CryptoWall and other ransomware.

Malvertising: a bigger problem than the industry thinks?

Advertising - not as benign as you might think - delivering malware to 1 in 5 computers.

'Kyle and Stan' malvertising attack infects millions via Amazon and YouTube

A malicious advertising network dubbed 'Kyle and Stan' has dropped malware on possibly millions of users via hundreds of websites including Amazon, YouTube and Yahoo, according to a Cisco investigation.

US Senate reviews the security challenge of malvertising

Questions raised over the opacity of ad server bidding processes contributing to malware delivery via adverts.

Web ads leading source of mobile malware

Research from Blue Coat Systems claims to show that Web-based adverts have taken over from adult Web sites as the leading source of mobile malware.

Aggressive adware and PUPS 'increase vulnerability to malware'

Apps that exploit users for advertising revenues and in-app purchases worsen mobile phone performance and collect unnecessary data, potentially increasing vulnerability.