Amazon Third Party Ads Cont.

Posted by on Jan 26, 2016 in Malvertising, Online Advertising, Tech Support Scam

An anonymous reader wrote to me in order to point out that finding a single bad ad on a massive site like Amazon is not worth noting purely because of how much traffic passes through it. Anonymous doesn’t understand that this is not a once off scenario and the fact that I find bad ads […]

Third Party Advertising

Posted by on Jan 21, 2016 in Malvertising, Online Advertising, Tech Support Scam

“Don’t do it.” That’s my advice to any network entertaining the notion of third party advertisers. The simple fact of the matter is that when you on board third party advertisers you’re putting your network’s reputation on the line, but more importantly: potentially jeopardizing the safety of your users. The economic benefits of third party […]

Google update to software downloads

Posted by on Mar 20, 2015 in Ad Injectors, Malvertising, Phishing

Google has a policy update on the way which is sure to impact the monsters that target vulnerable audiences with a myriad of deceptive downloads. Dear AdWords Advertiser, We’re writing to let you know about a change to Google’s advertising policies that might affect your AdWords account. Around late April, the Google AdWords policy on […]

AdWords Phishing #2

Posted by on Aug 11, 2014 in Malvertising, Phishing

A reader sent me an email asking me to clarify the following statement from my last post: “AdWords credentials are big bucks, more so if you phish a premium account.” Platforms the likes of AdWords are constantly under attack. It’s astonishingly simple to verify this for yourself: Head on over to google.com Search for “adwords […]

AdWords Phishing

Posted by on Aug 8, 2014 in Malvertising, Phishing

This Reddit post discusses an advertiser that is using Google’s AdWords system to phish Blockchain.info subscribers. If you’re not security/tech savvy, what this translates to is that an AdWords advertiser is tricking Google users into thinking that he/she is the face for another legitimate Web site. The idea is to steal user credentials. As an […]

Cellphonetech stuffing Amazon cookies with heightened concealment

We’ve recently been watching an Amazon Associates fraudster taking remarkable efforts to cover his tracks.  Like many rogue Associates we’ve looked at, he’s stuffing cookies invisibly.  He’s using Flash-based stuffing, a technique first written up last year.  But he’s several notches more sophisticated than most: The fraudster begins by buying a 125×125 IFRAME in the […]