Cyber gangs will escalate infiltration of legitimate ads: A10 Networks
So-called ‘malvertisers’ set to expand ops in 2015, warns security appliance specialist
Security hardware firm A10 Networks today warned against a growing number of malware campaigns that target advertisements on legitimate websites.
Dubbed "malvertising" the activity is particularly successful as it bypasses black-listing solutions by posing as genuine advertisements on trusted sites.
"Because the malware-laden advertisements are hosted by legitimate websites and the ads constantly change, traditional security tools that ‘black list' malicious sites cannot easily block malvertisers' ads," said Glen Ogden, regional sales director, Middle East, A10 Networks.
"Malware-laden ads often silently infect machines without users' knowledge. In 2015, we predict that malvertisers will take advantage of new exploits, known exploits like Dynamic DNS, and signature and sandbox evasion techniques to further propagate their malware across advertising networks."
Ogden advises that, to prevent malware infections, organisations should install anti-malware software on client machines and enforce security controls on clients' browsers. Advanced threat protection platforms can also help detect malware in Web traffic.
"Since many Web-based advertisements are now delivered over SSL, organisations should decrypt and inspect encrypted traffic," he said.