{"id":91,"date":"2008-02-02T14:41:35","date_gmt":"2008-02-02T22:41:35","guid":{"rendered":"http:\/\/cubist.cs.washington.edu\/Security\/2008\/02\/02\/malicious-banner-ads-appear-on-expedia-rhapsody-sites\/"},"modified":"2008-02-02T14:41:35","modified_gmt":"2008-02-02T22:41:35","slug":"malicious-banner-ads-appear-on-expedia-rhapsody-sites","status":"publish","type":"post","link":"https:\/\/secblog.cs.washington.edu\/Security\/2008\/02\/02\/malicious-banner-ads-appear-on-expedia-rhapsody-sites\/","title":{"rendered":"Malicious banner ads appear on Expedia, Rhapsody sites"},"content":{"rendered":"<p><a href=\"http:\/\/www.scmagazineus.com\/Malicious-banner-ads-appear-on-Expedia-Rhapsody-sites\/article\/104827\/\">http:\/\/www.scmagazineus.com\/Malicious-banner-ads-appear-on-Expedia-Rhapsody-sites\/article\/104827\/<\/a><\/p>\n<p>Recently, malicious ad banners that deliver malware had appear on both Expedia and Rhapsody.\u00a0 Clicking on the malicious flash ad banner, SWF_ADHIJACK.A, leads to several re-directions, which eventually result to the installation of a rogue antispyware detected as TROJ_GIDA.A.<\/p>\n<p>They are definitely not\u00a0 the first victims, as there have been reports of such discovery on other popular websites, such a MBL and NHL(<a href=\"www.crn.com\/security\/203101675\"><font size=\"-1\">www.crn.com\/security\/203101675<\/font><\/a>).\u00a0 However, what surprised me is that Expedia and Rhapsody, both being web-oriented company, failed to prevent such ads from reaching the site.\u00a0 Unlike MLB.com, both Expedia and Rhapsody\u00a0 have the knowledge and expertise to easily identify such malicious banners.\u00a0 They just decided not to filter ads provided by ad-serving network.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>http:\/\/www.scmagazineus.com\/Malicious-banner-ads-appear-on-Expedia-Rhapsody-sites\/article\/104827\/ Recently, malicious ad banners that deliver malware had appear on both Expedia and Rhapsody.\u00a0 Clicking on the malicious flash ad banner, SWF_ADHIJACK.A, leads to several re-directions, which eventually result to the installation of a rogue antispyware detected as TROJ_GIDA.A. &hellip; <a href=\"https:\/\/secblog.cs.washington.edu\/Security\/2008\/02\/02\/malicious-banner-ads-appear-on-expedia-rhapsody-sites\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":49,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-91","post","type-post","status-publish","format-standard","hentry","category-current-events"],"_links":{"self":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts\/91","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/users\/49"}],"replies":[{"embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/comments?post=91"}],"version-history":[{"count":0,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts\/91\/revisions"}],"wp:attachment":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/media?parent=91"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/categories?post=91"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/tags?post=91"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}