Geeks for your information News Privacy & Security News v
Expandable ads can be entry points for site hacks
Expandable ads can be entry points for site hacks
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
18 September 18, 20:21 (This post was last modified: 18 September 18, 20:26 by silversurfer.)
Quote:Researcher finds XSS vulnerabilities in iframe busters, scripts that power expandable ads that grow and cover a large area of the page.

Ads that expand on a web page to show a larger banner or video containers can be abused as entry points for other hacks, according to new research published this week by Randy Westergren, a Delaware-based security researcher.

Westergren detailed four examples on his blog, showing how an attacker could run malicious code on any site that uses iframe busters from ad networks like Adform, Eyeblaster (Add in Eye), Adtech, and Jivox.

Source: https://www.zdnet.com/article/expandable...ite-hacks/
[-] The following 2 users say Thank You to silversurfer for this post:
  • harlan4096, jasonX
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
QOwnNotes
26.4.16  Tag assi...Kool — 12:15
NanaZip 6.0 Update 3 (6.0.1691.0)
NanaZip 6.0 Update...harlan4096 — 06:11
QOwnNotes
26.4.15  Added an...Kool — 11:43
Zorin OS 18.1 Released With Windows App ...
Zorin OS has annou...harlan4096 — 07:14
Webroot SecureAnywhere 9.0.44.40
Webroot SecureAnyw...harlan4096 — 06:30

[-]
Birthdays
Today's Birthdays
avatar (38)RobertUtelt
Upcoming Birthdays
avatar (45)wapedDow
avatar (44)techlignub
avatar (43)Stevenmam
avatar (50)onlinbah
avatar (51)steakelask
avatar (45)Termoplenka
avatar (43)bycoPaist
avatar (49)pieloKat
avatar (43)ilyagNeexy
avatar (51)donitascene
avatar (51)Toligo

[-]
Online Staff
There are no staff members currently online.

>