Geeks for your information News Privacy & Security News v
Expandable ads can be entry points for site hacks
Expandable ads can be entry points for site hacks
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
18 September 18, 20:21 (This post was last modified: 18 September 18, 20:26 by silversurfer.)
Quote:Researcher finds XSS vulnerabilities in iframe busters, scripts that power expandable ads that grow and cover a large area of the page.

Ads that expand on a web page to show a larger banner or video containers can be abused as entry points for other hacks, according to new research published this week by Randy Westergren, a Delaware-based security researcher.

Westergren detailed four examples on his blog, showing how an attacker could run malicious code on any site that uses iframe busters from ad networks like Adform, Eyeblaster (Add in Eye), Adtech, and Jivox.

Source: https://www.zdnet.com/article/expandable...ite-hacks/
[-] The following 2 users say Thank You to silversurfer for this post:
  • harlan4096, jasonX
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
AMD Radeon Adrenalin Edition 20.11.2
AMD Adrenalin 26.6.1...harlan4096 — 17:26
LibreOffice 26.2.4
Berlin, 5 June 202...harlan4096 — 12:17
Surfshark VPN : Award-winning VPN servi...
Surfshark Apps Ver...jasonX — 11:34
K-Lite Codec Pack 19.7.5 / 19.7.5 Update
Changes in 19.7.5 ...harlan4096 — 10:19
Brave v1.91.168 (Chromium 149.0.7827.54)
Release v1.91.168 ...harlan4096 — 10:17

[-]
Birthdays
Today's Birthdays
avatar (42)tapedDow
Upcoming Birthdays
avatar (48)BrantgoG
avatar (49)rapedDow
avatar (44)Johnsonsyday
avatar (49)Groktus
avatar (41)efodo
avatar (39)Tedscolo
avatar (46)brakasig
avatar (51)smudloquask
avatar (46)benchJem
avatar (45)JamesReshy
avatar (47)Francisemefe
avatar (40)leoniDup
avatar (39)Patrizaancem
avatar (39)biobdam
avatar (42)zacforat
avatar (47)NemrokReks
avatar (38)Barrackleve
avatar (40)Julioagopy
avatar (50)aolaupitt2558
avatar (48)vadimTob
avatar (38)leannauu4
avatar (40)storoBox
avatar (48)kinotHeemn
avatar (39)Ceballos1976
avatar (40)efynu
avatar (32)horancos

[-]
Online Staff
There are no staff members currently online.

>