Yahoos' Yield Manager top ad malware distributor, says Avast

Malware that exploits holes in popular applications is being delivered by big ad delivery platforms including those run by Yahoo, Fox, and Google, according to Prague-based antivirus firm Avast ‘some large ad delivery platforms including Yahoo's Yield Manager and Fox Audience Network's Fimserve.com, together cover more than 50% of online ads, and to a much […]

Malware that exploits holes in popular applications is being delivered by big ad delivery platforms including those run by Yahoo, Fox, and Google, according to Prague-based antivirus firm Avast ‘some large ad delivery platforms including Yahoo's Yield Manager and Fox Audience Network's Fimserve.com, together cover more than 50% of online ads, and to a much smaller degree Google's DoubleClick. In addition, some of the malicious ads ended up on Yahoo and Google sites, Avast claims.’ Found in ads delivered from those networks was JavaScript code that Avast dubbed "JS:Prontexi," which Avast researcher Jiri Sejtko said is a Trojan in script form that targets the Windows operating system. It looks for vulnerabilities in Adobe Reader and Acrobat, Java, QuickTime, and Flash and launches fake antivirus warnings, Sejtko said. Users don't need to click on anything to get infected; a computer becomes infected after the ad is loaded by the browser, Avast said. A Yahoo representative confirmed the report and said it was investigating the situation, but didn't provide much information. A Google spokesman said the company had discovered malware in ads from DoubleClick on its own and halted them.

[Source]