• IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here.

    The OTHER forum is HERE so please stop asking.

Premier League fantasy football website infected with malicious adverts

SamAllardyce

SamAllardyce

Alfrescian
Loyal


Premier League fantasy football website infected with malicious adverts

Visitors to popular fantasy football portal website could have been affected if they clicked on a fake yacht advert, researchers say

fpl_3497471b.jpg


The Premier League's official fantasy football game is used by 3m people

By James Titcomb
10:54AM GMT 11 Nov 2015

The Premier League's official fantasy football website carried malicious advertising that could have been used to infect visitors' computers, researchers have claimed.

A flash-based advert purportedly for a yacht seller redirected to a website hosting a malicious tool that can exploit software vulnerabilities, security company Malwarebytes said.

Malwarebytes found the advert on fantasy.premierleague.com, the Premier League's official fantasy football game with more than 3m players.

The website carries many of the display adverts that are common across the web, but one illegitimate actor managed to infiltrate the site by disguising its destination.

If visitors clicked on the advert, titled they would be sent through to a landing page for a "Nuclear exploit kit", which uses exploits in Flash to detect vulnerabilities in a user's web browser or operating system. According to Heimdal Security, it can use "Flash, Silverlight, PDF, and Internet Explorer exploits to the possibility of launching advanced pieces of malware and ransomware".

premier-league_2247618b.jpg


Record money: Premier League broadcast rights are worth £3.018 billion Photo: PA

Most users will have been protected from any vulnerabilities if they had updated their software to the latest versions.

While the URLs of malicious sites are often blacklisted by advertising platforms, Malwarebytes said the fake advertisers disguised the final location by using Google's goo.gl URL shortener. Since these links belong to Google, they can't be blacklisted at the domain name level.

It was also distributed over HTTPS, an encrypted communication protocol, and the internet address of the provider that hosted the exploit kit was hidden with CloudFlare, a company that can hide addresses behind their own.

Malwarebytes said it had alerted Google about the URL and the Premier League about the advert. The Premier League has not yet responded to a request for comment.

fantasyfootball_3497461b.jpg


The Premier League's fantasy football website had a malicious advert Photo: Malwarebytes



 
You must log in or register to reply here.

Similar threads

SBFNews
Over 400 million infected with Android spyware — delete these apps right now
Replies
12
Views
2K
blackmondy
blackmondy
P
Chitchat Shortseller Report about Tiong Company Ping Duo Duo (Temu)
Replies
0
Views
410
Pinkieslut
P
TIEPILOT
Match.com site hit by malicious adverts
Replies
0
Views
2K
TIEPILOT
TIEPILOT
Akechi Mitsuhide
YouTube ads network serving Caphaw Banking Trojan
Replies
0
Views
949
Akechi Mitsuhide
Akechi Mitsuhide
Top