Attackers are now using Flash banner ads that take over your clipboard by forcing a malicious URL into it.
The Flash ad will keep the bad URL in the clipboard so that you won't be able to remove it until you close your browser. The URL leads to a fake antivirus program. The hope is you might accidentally go to that URL by pasting it onto your browser, or spam your friends on the attacker's behalf.
For a demo, go to security researcher Aviv Raff's demo page. The Flash object on that page will overwrite your clipboard with "http://www.evil.com" and keep it there until you close his page.
What to do about this:
If you have an AccessEnforcer, we highly recommend that you turn on web filtering and enable the Ads URL blacklist category -- which will block all sorts of ads including Flash ads.
We also recommend running Firefox with the NoScript extension. NoScript blocks Java, JavaScript, and Flash content unless the site is explicitly allowed (and is easier to use than it sounds).
Who We Are
AccessEnforcer Series
Contributors
Blogs We Read
Our Feeds
Blog Archive
-
►
2009
(37)
-
►
October
(7)
- Part III: Small Businesses under Attack from Organ...
- Top 10 things I learned from US Government Trusted...
- Part II: Small Businesses under Attack from Organi...
- Part I: Small Businesses under Attack from Organiz...
- Email malware leverages Conflicker & Microsoft bra...
- Third Tier Webinar: Behind the SBS 2008 Wizards
- FBI hauling in Phishing ring
-
►
August
(7)
- Data centers to target SMB market with new "Cloud ...
- "Patch Tuesday" reinforces role of managed service...
- Third Tier partnership expands expertise
- Ready Set Patch! Microsoft Patches Flaws.
- Fortinet Launches IPO pointing to positive growth ...
- NC Approves Sales Tax on Digital Downloads
- Using Twitter to see if Twitter is down
-
►
October
(7)
0 comments:
Post a Comment