Adware warning on SYW thread

Status
Not open for further replies.

Deleted member 42

Thanks--

I think it's a link to a blog post in the thread; checking now.
 

Deleted member 42

Nope; it looks like it's it's an injection attack—that is, code picked up elsewhere that's attempting to insert/inject itself into a Google ad.

It's possible (but unlikely) that it's tied to a specific Google ad, so if someone sees the popup (it's typically a fake Java update) and can tell me what Google ads they're seeing, that would be helpful.

Essentially, this malware works by inserting itself into an iframe or popup, then pretending to be a software update (usually for Flash or Java) -- a user clicks OK and malware is downloaded that then downloads other malware.

It is emphatically not on AW's server.
 
Status
Not open for further replies.