SoylentNews is people
SoylentNews
Ad blockers, our last hope against the onslaught of malvertising campaigns, appear to have fallen, as today, Malwarebytes published new research detailing a malvertising campaign that successfully bypasses ad blockers to deliver their malicious payload.
This malvertising campaign is named RoughTed based on the initial malicious domain at which it was found back in March 2017, but Jérôme Segura, the Malwarebytes security researcher who came across it, says there are clues to show that RoughTed has been active for over a year.
The campaign is very complex and well designed (from a crook's standpoint), as it leverages multiple tricks of the trade, most of which have allowed it to grow undetected in the shadows for so much time.
The word that describes RoughTed the best is "diversity." The operators of this malvertising campaign not only feature traffic from different types of sources, but also include different user fingerprinting techniques, and very different malicious payloads.
Source: BleepingComputer. Segura's original blog posting and analysis.
(Score: 1, Insightful) by Anonymous Coward on Sunday May 28 2017, @08:04AM (1 child)
Also (like stated in the article) blacklisting is a losing proposition. It's almost security theater to operate under the fool me once paradigm.
(Score: 1) by anubi on Tuesday May 30 2017, @09:58AM
Blacklisting is too much like playing whack-a-mole.
Whitelisting seems to be the way to go. There is a very short list of people I want to talk to anyhow on my personal phone.
My area is presently experiencing a rash of threatening IRS/Unpaid Debt phone scamming. Some of these guys have enough info on us already to start a credible conversation. Its to the point I just as soon not give anyone I don't know the courtesy of even an answered call anymore. If they have a scam to pull, put it in a letter and mail it. I know good and well they are going to act like a businessman threatening to sue me, and claiming this phone call is his due diligence to contact me, and my blowing him off is just the proof he needs to demonstrate my lack of good faith in front of a judge, or that sort of thing. Once the connection is made, his head will spew off higher and higher amounts of damages it will sue for in an effort to make me pay off a more modest amount now to get the head to go away. It will use lots of legal type terminology to give me the illusion that I am in big trouble, and best to pay now to settle the matter in a timely manner before exorbitant charges begin to accrue.
I know its a scam. I don't owe anything at all, but neither do I want to spend several days in court trying to explain to a judge that I have never done business with this guy, no matter what papers he says he has. No phone contact? His headfull of bullshit gets delivered to someone else who still gives unknown callers the courtesy of an answered call.
I am honest with the people I do involve myself with so things do not come to this.
So, if they need to contact me, use the US Postal Service. They know my address.
( Yeh, they won't do that. Big penalties for involving the Post Office in a scam, but its quite OK to involve the Telephone Company in one.)
"Prove all things; hold fast that which is good." [KJV: I Thessalonians 5:21]