Yahoo has been under attack over the past few weeks by hackers attempting to spread malware. This has been very successful so far and the infection rate has been staggering. These are targeted at a variety of countries and is affecting users at an exponential rate.
The web security company, Fox-IT reported Yahoo’s servers were issuing an “exploit kit” that found bugs in java and injected the malicious code via these vulnerabilities. “Clients visiting yahoo.com received advertisements served by ads.yahoo.com,” the Internet security company said. “Some of the advertisements are malicious.”
Fox IT stated that thousands of users are being affected by the minute. “Given a typical infection rate of 9%, this would result in around 27,000 infections every hour,” the company said. “Based on the same sample, the countries most affected by the exploit kit are Romania, Great Britain and France. At this time it’s unclear why those countries are most affected, it is likely due to the configuration of the malicious advertisements on Yahoo.”
Fox-IT claims they do not know who is behind the attack, but it seams to be “financially motivated.”
On a positive not Fox-IT did mention that “Additionally, users using Macs and mobile devices were not affected,” it added.
Yahoo Responds to Malware Attack
Yahoo made the following statement, in writing, when addressing the security concerns: “We recently identified an ad designed to spread malware to some of our users. We immediately removed it and will continue to monitor and block any ads being used for this activity.”
This may all have come to light but, it’s still important to do a virus and malware scan on your computer or laptop. We recommend the free or pro version of Malwarebytes. Remember to keep your web browser, as well as, all of your security software up to date to prevent infection from exploits within old software.
We have been seeing an unprecedented number of breaches recently across the entire tech sector. The rise in malware is astounding. Malicious software such as Conduit are running rampant. This shines an even brighter light on the regulations and standards that desperately need to be implemented into the tech industry.